CVE-2026-6630

· NIST NVD ↗

A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. Performing a manipulation of the argument dips results in buffer overflow. The attack may be initiated remotely. The exploit has been made public and could be used.

HIGH
CVSS severity
8.8
CVSS base score
2026-04-20
Published

CWE codes

CWE-119CWE-120

Sources