CVE-2026-7101

A vulnerability has been found in Tenda F456 1.0.0.5. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. The manipulation leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be ...

high 8.8 CVSS 3.1

Published: Apr 27, 2026

Modified: Apr 27, 2026

Description

A vulnerability has been found in Tenda F456 1.0.0.5. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. The manipulation leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

References

https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_139/README.md
https://vuldb.com/submit/798474
https://vuldb.com/vuln/359676
https://vuldb.com/vuln/359676/cti
https://www.tenda.com.cn/

Version	3.1
Score	8.8 / 10
Severity	high