← volver
CVE-2026-7079

Tenda F456 httpd AdvSetWan fromAdvSetWan buffer overflow

CVSS 8.7 HIGHEPSS 0.6%CWE-119CWE-120
A weakness has been identified in Tenda F456 1.0.0.5. This affects the function fromAdvSetWan of the file /goform/AdvSetWan of the component httpd. This manipulation of the argument wanmode causes buffer overflow. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
Productos afectados
Tenda · F456
PoCs públicas encontradas1
cve_referencegithub.com/Litengzheng/vuldb_new/blob/main/F456/vul_130/README.mdno verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_130/README.mdhttps://vuldb.com/submit/798461https://vuldb.com/vuln/359654https://vuldb.com/vuln/359654/ctihttps://www.tenda.com.cn/