CVE-2026-7101

HIGH CVSS 8.8 View on NVD ↗

Description

A vulnerability has been found in Tenda F456 1.0.0.5. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. The manipulation leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_139/README.md
https://vuldb.com/submit/798474
https://vuldb.com/vuln/359676
https://vuldb.com/vuln/359676/cti
https://www.tenda.com.cn/

Published: Apr 27, 2026 09:16 UTC Modified: Apr 27, 2026 18:57 UTC