CVE-2026-3167

HIGH(8.8)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Risk Signal Score22/100 — NIEDRIG

CVSS 8.8 — Hoch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

8.8

Technische Schwere

Beschreibung

A security flaw has been discovered in Tenda F453 1.0.0.3. The impacted element is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component httpd. Performing a manipulation of the argument webSiteId results in buffer overflow. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks.

Referenzen

https://github.com/Litengzheng/vul_db/blob/main/F453/vul_66/README.md
https://vuldb.com/?ctiid.347674
https://vuldb.com/?id.347674
https://vuldb.com/?submit.759594
https://www.tenda.com.cn/