CVE-2026-7057 Tenda F456 httpd setcfm buffer overflow

A flaw has been found in Tenda F456 1.0.0.5. The affected element is an unknown function of the file /goform/setcfm of the component httpd. This manipulation of the argument funcname/funcpara1 causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been published a...

CVE-2026-5154

A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /goform/setcfm of the component Parameter Handler. The manipulation of the argument funcname leads to stack-based buffer overflow. Remote exploitation of the attack is possible...

CVE-2026-5154 Tenda CH22 Parameter setcfm fromSetCfm stack-based overflow

A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /goform/setcfm of the component Parameter Handler. The manipulation of the argument funcname leads to stack-based buffer overflow. Remote exploitation of the attack is possible...

PT-2026-28700

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.19 Description A flaw exists in the Tenda AC15 router that allows remote attackers to trigger a stack-based buffer overflow. The issue is located within the POST Request Handler component, specifically in the...

CVE-2026-3799

The CVE-2026-3799 entry concerns the Tenda i3 router (firmware 1.0.0.6(2204)). The flaw resides in the formSetCfm handler (file /goform/setcfm), where manipulation of the funcpara1 argument triggers a stack-based buffer overflow. This vulnerability enables remote exploitation and is supported by ...

CVE-2026-3728

A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCfm of the file /goform/setcfm. This manipulation of the argument funcname/funcpara1 causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly...

CVE-2026-3728

A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCfm of the file /goform/setcfm. This manipulation of the argument funcname/funcpara1 causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly...

EUVD-2026-10192

A vulnerability was found in Tenda FH451 1.0.0.9. This impacts the function fromSetCfm of the file /goform/setcfm. The manipulation of the argument funcname/funcpara1 results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be use...

CVE-2026-3677

A vulnerability was found in Tenda FH451 1.0.0.9. This impacts the function fromSetCfm of the file /goform/setcfm. The manipulation of the argument funcname/funcpara1 results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be use...

CVE-2026-3677

CVE-2026-3677 affects Tenda FH451 1.0.0.9. The vulnerability resides in the fromSetCfm function in /goform/setcfm, where manipulating the funcname/funcpara1 arguments triggers a stack-based buffer overflow. The issue can be exploited remotely, and public exploits exist. Metrics indicate HIGH impa...

Tenda W6-S setcfm function buffer overflow vulnerability

Tenda W6-S is a 300Mbps wireless panel AP designed for large households such as homes, hotels and villas to provide stable wireless network coverage and low latency network experience. The Tenda W6-S suffers from a buffer overflow vulnerability that originates from the setcfm function failing to...

CVE-2025-28220

CVE-2025-28220 affects Tenda W6_S devices (v1.0.0.4_510). The setcfm function suffers a buffer overflow when processing the funcpara1 input in a POST request, allowing remote attackers to crash the web server (denial of service). Connected sources (CNVD/CNNVD/NVD/Red Hat/CVE listings) corroborate...

PT-2024-1310 · Tenda · Tenda W6

Name of the Vulnerable Software and Affected Versions: Tenda W6 version 1.0.0.94122 Description: A critical issue affects the formSetCfm function of the httpd component, specifically in the /goform/setcfm file. The manipulation of the funcpara1 argument leads to a stack-based buffer overflow. Thi...