CVE-2026-7033

· NIST NVD ↗

A vulnerability has been found in Tenda F456 1.0.0.5. Affected by this vulnerability is the function fromSafeClientFilter of the file /goform/SafeClientFilter. Such manipulation of the argument menufacturer/Go leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

HIGH
CVSS severity
8.8
CVSS base score
2026-04-26
Published

CWE codes

CWE-119CWE-120

Affected products

tenda:f456_firmwaretenda:f456

Sources