top of page
perceptive_background_267k.jpg

A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCfm of the file /goform/setcfm. This manipulation of the argum…

Published:

7 March 2026 at 23:00:00

Alert date:

8 March 2026 at 11:01:18

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

A stack-based buffer overflow vulnerability has been identified in Tenda F453 router firmware version 1.0.0.3/1.If. The vulnerability affects the fromSetCfm function in the /goform/setcfm file, where manipulation of the funcname/funcpara1 arguments can cause a buffer overflow. This vulnerability can be exploited remotely and the exploit code has been publicly disclosed, making it actively exploitable. The vulnerability allows attackers to potentially execute arbitrary code on affected devices. Multiple proof-of-concept exploits are available through public repositories and vulnerability databases.

Technical details

Mitigation steps:

Affected products:

Tenda F453

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-3728
https://github.com/Litengzheng/vul_db/blob/main/F453/vul_97/README.md
https://vuldb.com/?ctiid.349706
https://vuldb.com/?id.349706
https://vuldb.com/?submit.766933
https://www.tenda.com.cn/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page