CVE-2026-7057

The CVE-2026-7057 affects Tenda F456 (firmware 1.0.0.5). The vulnerability is in the httpd component, specifically the /goform/setcfm handler, where manipulating the arguments funcname/funcpara1 leads to a buffer overflow. This could permit a remote attacker to exploit the flaw, and published exp...

EUVD-2026-25726

A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be...

CVE-2026-7055 Tenda F456 httpd VirtualSer fromVirtualSer buffer overflow

A security vulnerability has been detected in Tenda F456 1.0.0.5. This issue affects the function fromVirtualSer of the file /goform/VirtualSer of the component httpd. The manipulation of the argument menufacturer/Go leads to buffer overflow. The attack is possible to be carried out remotely. The...

CVE-2026-7055

The CVE concerns Tenda F456 1.0.0.5, specifically the httpd component’s fromVirtualSer function in /goform/VirtualSer. The issue is a buffer overflow caused by manipulation of the argument menufacturer/Go, enabling a remote attack. The vulnerability is detailed with high impact across confidentia...

CVE-2026-7054 Tenda F456 httpd PPTPDClient fromPptpUserAdd buffer overflow

A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be executed remotely. The...

CVE-2026-7053 Tenda F456 httpd L7Prot frmL7ProtForm buffer overflow

A security flaw has been discovered in Tenda F456 1.0.0.5. This affects the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

EUVD-2026-25723

A security flaw has been discovered in Tenda F456 1.0.0.5. This affects the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

CVE-2026-7034

A vulnerability was found in Tenda FH1202 1.2.0.14408. Affected by this issue is the function WrlExtraSet of the file /goform/WrlExtraSet of the component httpd. Performing a manipulation of the argument Go results in stack-based buffer overflow. The attack may be initiated remotely. The exploit...

CVE-2026-7034

A vulnerability was found in Tenda FH1202 1.2.0.14408. Affected by this issue is the function WrlExtraSet of the file /goform/WrlExtraSet of the component httpd. Performing a manipulation of the argument Go results in stack-based buffer overflow. The attack may be initiated remotely. The exploit...

CVE-2026-7034

CVE-2026-7034 affects Tenda FH1202 (firmware 1.2.0.14(408)) in the httpd component, specifically the WrlExtraSet function in /goform/WrlExtraSet. The issue is a stack-based buffer overflow triggered by manipulating the Go argument, leading to potential remote control of affected devices. An explo...

Tenda FH1202 缓冲区错误漏洞

The Tenda FH1202 is a wireless router produced by the Chinese company Tenda. Version 1.2.0.14 of the Tenda FH1202 contains a buffer error vulnerability. This vulnerability stems from improper handling of Go parameters in the fromWrlclientSet function of the httpd component’s goform/WrlclientSet...

Tenda F456 缓冲区错误漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a buffer overflow vulnerability. This vulnerability stems from the fromVirtualSer function in the httpd component’s/goform/VirtualSer file, where improper handling of the...

Tenda F456 缓冲区错误漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a buffer overflow vulnerability. This vulnerability stems from improper handling of the page parameter in the fromSafeUrlFilter function of the goform/SafeUrlFilter module in the...

Tenda FH1202 缓冲区错误漏洞

The Tenda FH1202 is a wireless router produced by the Chinese company Tenda. The version Tenda FH1202 1.2.0.14408 contains a buffer error vulnerability. This vulnerability stems from improper handling of Go parameters in the WrlExtraSet function of the httpd component’s goform/WrlExtraSet file,...

PT-2026-35231

A security flaw has been discovered in Tenda F456 1.0.0.5. This affects the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

PT-2026-35234

A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be...

CLSA-2026-1777033551 httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible request smuggling via invalid Transfer-Encoding...

Security Bulletin: Vulnerabilities in httpd affects IBM Netezza Appliance

Summary The httpd package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEsCVE-2025-58098, CVE-2025-65082, CVE-2025-66200 Vulnerability Details CVEID:CVE-2025-58098 DESCRIPTION: Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled an...

AZL-9785 CVE-2009-1890 for package httpd is not applicable

This CVE either no longer is or was never applicable...

EUVD-2026-23827

A vulnerability was found in Tenda F451 1.0.0.7cnsvn7958. This issue affects the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. Performing a manipulation of the argument dips results in buffer overflow. The attack may be initiated remotely. The exploit has be...