CVE-2026-7101

HIGH NVD

CVSS Score 8.8

Severity HIGH

Published Apr 27, 2026

Vendor unknown

Description

A vulnerability has been found in Tenda F456 1.0.0.5. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. The manipulation leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

References

https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_139/README.md
https://vuldb.com/submit/798474
https://vuldb.com/vuln/359676
https://vuldb.com/vuln/359676/cti
https://www.tenda.com.cn/