CVE-2026-3166

HIGH(8.8)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Risk Signal Score22/100 — NIEDRIG

CVSS 8.8 — Hoch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

8.8

Technische Schwere

Beschreibung

A vulnerability was identified in Tenda F453 1.0.0.3. The affected element is the function fromRouteStatic of the file /goform/RouteStatic of the component httpd. Such manipulation of the argument page leads to buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used.

Referenzen

https://github.com/Litengzheng/vul_db/blob/main/F453/vul_65/README.md
https://vuldb.com/?ctiid.347673
https://vuldb.com/?id.347673
https://vuldb.com/?submit.759589
https://www.tenda.com.cn/