EUVD-2026-12488

A weakness has been identified in Tenda AC8 up to 16.03.50.11. This vulnerability affects the function doSystemCmd of the file /goform/SysToolChangePwd of the component HTTP Endpoint. This manipulation of the argument local2c causes stack-based buffer overflow. The attack can be initiated remotel...

CVE-2026-4043

A security vulnerability has been detected in Tenda i12 1.0.0.62204. The impacted element is the function formwrlSSIDget of the file /goform/wifiSSIDget. Such manipulation of the argument index leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclos...

CVE-2026-4042 Tenda i12 WifiMacFilterGet formWifiMacFilterGet stack-based overflow

A weakness has been identified in Tenda i12 1.0.0.62204. The affected element is the function formWifiMacFilterGet of the file /goform/WifiMacFilterGet. This manipulation of the argument index causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made...

CVE-2026-3976

CVE-2026-3976 affects Tenda W3 firmware 1.0.0.3(2204). The vulnerability lies in the POST Parameter Handler’s function formWifiMacFilterSet (file /goform/WifiMacFilterSet), where manipulation of the index/GO argument can trigger a stack-based buffer overflow. This vulnerability can be exploited r...

CVE-2026-3728 Tenda F453 setcfm fromSetCfm stack-based overflow

A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCfm of the file /goform/setcfm. This manipulation of the argument funcname/funcpara1 causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly...

PT-2026-23932

Name of the Vulnerable Software and Affected Versions Tenda F453 version 1.0.0.3 Description A stack-based buffer overflow exists in the function sub 3C6C0 of the file /goform/QuickIndex. The issue is triggered by manipulating the mit linktype/PPPOEPassword argument, allowing for remote attacks. ...

Tenda AC6 安全漏洞

Tenda AC6 is a wireless router produced by the Chinese company Tenda. The Tenda AC6V2.0 V15.03.06.23multi version has a security vulnerability. This vulnerability stems from the lack of size checking in the/goform/WifiWpsStart component, which may lead to a stack overflow issue...

CVE-2026-3379

A vulnerability has been found in Tenda F453 1.0.0.3. This vulnerability affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...

EUVD-2026-9112

A security vulnerability has been detected in Tenda F453 1.0.0.3. Affected by this vulnerability is the function fromSafeMacFilter of the file /goform/SafeMacFilter. Such manipulation of the argument page leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been...

Tenda F453 安全漏洞

The Tenda F453 is a wireless router produced by the Chinese company Tenda. The Tenda F453 1.0.0.3 version has a security vulnerability. This vulnerability stems from improper handling of parameters in the file/goform/L7Prot, which may lead to a buffer overflow...

Tenda F453 安全漏洞

The Tenda F453 is a wireless router produced by the Chinese company Tenda. The Tenda F453 1.0.0.3 version has a security vulnerability. This vulnerability stems from improper handling of parameters in the file/goform/addressNat, specifically the entrys parameter, which may lead to a buffer overfl...

CVE-2026-3169

A security vulnerability has been detected in Tenda F453 1.0.0.3. This impacts the function fromSafeEmailFilter of the file /goform/SafeEmailFilter of the component httpd. The manipulation of the argument page leads to buffer overflow. Remote exploitation of the attack is possible. The exploit ha...

CVE-2026-3167

A security flaw has been discovered in Tenda F453 1.0.0.3. The impacted element is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component httpd. Performing a manipulation of the argument webSiteId results in buffer overflow. The attack may be initiated remotely. The...

CVE-2026-3168

A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromNatStaticSetting of the file /goform/NatStaticSetting of the component httpd. Executing a manipulation of the argument page can lead to buffer overflow. The attack may be launched remotely. The exploit has been ma...

PT-2026-21878

Name of the Vulnerable Software and Affected Versions Tenda F453 version 1.0.0.3 Description A buffer overflow issue exists in the Tenda F453 router firmware. The flaw is located within the fromSetWifiGusetBasic function of the httpd component, specifically in the file /goform/AdvSetWrlsafeset...

CVE-2026-2874

A flaw has been found in Tenda A21 1.0.0.0. Impacted is the function formfastsettingwifiset of the file /goform/fastsettingwifiset. Executing a manipulation of the argument ssid can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published a...

CVE-2026-2182 UTT 进取 521G setSysAdm doSystem command injection

A weakness has been identified in UTT 进取 521G 3.1.1-190816. Affected by this issue is the function doSystem of the file /goform/setSysAdm. Executing a manipulation of the argument passwd1 can lead to command injection. The attack may be launched remotely. The exploit has been made available to th...

CVE-2026-2157

D-Link DIR-823X 250416 is affected by CVE-2026-2157. The vulnerability is in the function sub_4175CC of /goform/set_static_route_table, where manipulating arguments (interface, destip, netmask, gateway, metric) enables OS command injection. Attack can be performed remotely and public exploits hav...

CVE-2026-2082

A vulnerability was identified in D-Link DIR-823X 250416. The impacted element is an unknown function of the file /goform/setmacclone. Such manipulation of the argument mac leads to os command injection. The attack may be performed from remote. The exploit is publicly available and might be used...

CVE-2026-2139 Tenda TX9 fast_setting_wifi_set sub_432580 buffer overflow

A vulnerability was determined in Tenda TX9 up to 22.03.02.10multi. Affected by this vulnerability is the function sub432580 of the file /goform/fastsettingwifiset. This manipulation of the argument ssid causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly...