top of page
perceptive_background_267k.jpg

A flaw has been found in Tenda F456 1.0.0.5. Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet of the component htt…

Published:

26 april 2026 om 22:00:00

Alert date:

27 april 2026 om 19:18:12

Source:

nvd.nist.gov

Click to open the original link from this advisory

Mobile & IoT, Network Infrastructure

A buffer overflow vulnerability has been discovered in Tenda F456 router firmware version 1.0.0.5. The flaw affects the formWrlExtraSet function in the /goform/WrlExtraSet file of the httpd component. Attackers can exploit this vulnerability remotely by manipulating the 'Go' argument parameter. The vulnerability allows for buffer overflow attacks that can be executed from remote locations. Public exploits have been published and are available for use, making this a high-priority security concern for affected devices.

Technical details

Mitigation steps:

Affected products:

Tenda F456

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-7082
https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_134/README.md
https://vuldb.com/submit/798465
https://vuldb.com/vuln/359657
https://vuldb.com/vuln/359657/cti
https://www.tenda.com.cn/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page