CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/04/26 10:17 p.m.•2 views

CVE-2026-7057

CVE•added 2026/04/26 6:45 p.m.•6 views

CVE-2026-7057

The CVE-2026-7057 affects Tenda F456 (firmware 1.0.0.5). The vulnerability is in the httpd component, specifically the /goform/setcfm handler, where manipulating the arguments funcname/funcpara1 leads to a buffer overflow. This could permit a remote attacker to exploit the flaw, and published exp...

9CVSS8.4AI score0.00092EPSS

ATTACKERKB•added 2026/04/26 6:45 p.m.•1 views

CVE-2026-7057

9CVSS5.8AI score0.00092EPSS

Cvelist•added 2026/04/26 6:45 p.m.•24 views

CVE-2026-7057 Tenda F456 httpd setcfm buffer overflow

Vulnrichment•added 2026/04/26 6:45 p.m.•1 views

CVE-2026-7057 Tenda F456 httpd setcfm buffer overflow

9CVSS8.4AI score0.00092EPSS

EUVD•added 2026/04/26 6:45 p.m.•1 views

EUVD-2026-25727

9CVSS8.5AI score0.00092EPSS

CNNVD•added 2026/04/26 12:0 a.m.•3 views

Tenda F456 缓冲区错误漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a buffer overflow vulnerability. This vulnerability stems from improper handling of the funcname/funcpara1 parameter in the goform/setcfm file within the httpd component, which ma...

9CVSS7.8AI score0.00092EPSS

Positive Technologies•added 2026/04/26 12:0 a.m.•0 views

PT-2026-35235

9CVSS5.8AI score0.00092EPSS

RedhatCVE•added 2026/03/31 10:58 p.m.•0 views

CVE-2026-5154

A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /goform/setcfm of the component Parameter Handler. The manipulation of the argument funcname leads to stack-based buffer overflow. Remote exploitation of the attack is possible...

EUVD•added 2026/03/31 12:31 a.m.•1 views

EUVD-2026-17247

NVD•added 2026/03/30 11:17 p.m.•2 views

Exploits1References6

CVE-2026-5154

Vulnrichment•added 2026/03/30 10:30 p.m.•1 views

CVE-2026-5154 Tenda CH22 Parameter setcfm fromSetCfm stack-based overflow

Cvelist•added 2026/03/30 10:30 p.m.•18 views

CVE-2026-5154 Tenda CH22 Parameter setcfm fromSetCfm stack-based overflow

CVE•added 2026/03/30 10:30 p.m.•8 views

CVE-2026-5154

CVE-2026-5154 affects Tenda CH22 1.0.0.1. The vulnerability is in the Parameter Handler’s implementation of the function fromSetCfm in /goform/setcfm. Manipulating the funcname argument causes a stack-based buffer overflow, enabling remote exploitation. Public disclosure of the exploit indicates ...

ATTACKERKB•added 2026/03/30 10:30 p.m.•0 views

CVE-2026-5154

9CVSS6.1AI score0.00092EPSS

CNNVD•added 2026/03/30 12:0 a.m.•2 views

Tenda CH22 安全漏洞

The Tenda CH22 is a network device produced by the Chinese company Tenda. There is a security vulnerability in the version 1.0.0.1/1.If of the Tenda CH22. This vulnerability stems from incorrect operations on the parameter funcname in the functions fromSetCfm of the Component Parameter Handler fi...

9CVSS7.7AI score0.00092EPSS

Exploits1References6

RedhatCVE•added 2026/03/28 11:9 p.m.•0 views

CVE-2026-4975

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

9CVSS7.9AI score0.00092EPSS

RedhatCVE•added 2026/03/28 4:56 a.m.•2 views

CVE-2026-4904

A vulnerability has been found in Tenda AC5 15.03.06.47. This issue affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. Such manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit...

9CVSS7.9AI score0.00037EPSS

NVD•added 2026/03/27 8:16 p.m.•0 views

CVE-2026-4975