CVE-2026-6632

· NIST NVD ↗

A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromSafeClientFilter of the file /goform/SafeClientFilter of the component httpd. The manipulation of the argument menufacturer/Go leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

HIGH
CVSS severity
8.8
CVSS base score
2026-04-20
Published

CWE codes

CWE-119CWE-120

Sources