Tenda F453 vulnerabilities

CVE-2026-3272 [HIGH] CWE-119 CVE-2026-3272: A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromDhcpListClient of A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. This manipulation of the argument page causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

CVE-2026-3273 [HIGH] CWE-119 CVE-2026-3273: A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component httpd. Such manipulation of the argument mit_ssid_index leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.

CVE-2026-3275 [HIGH] CWE-119 CVE-2026-3275: A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromAddressNat of th A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromAddressNat of the file /goform/addressNat of the component httpd. Executing a manipulation of the argument entrys can lead to buffer overflow. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks.

CVE-2026-3274 [HIGH] CWE-119 CVE-2026-3274: A security flaw has been discovered in Tenda F453 1.0.0.3. Affected by this issue is the function fr A security flaw has been discovered in Tenda F453 1.0.0.3. Affected by this issue is the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for at

CVE-2026-3166 [HIGH] CWE-119 CVE-2026-3166: A vulnerability was identified in Tenda F453 1.0.0.3. The affected element is the function fromRoute A vulnerability was identified in Tenda F453 1.0.0.3. The affected element is the function fromRouteStatic of the file /goform/RouteStatic of the component httpd. Such manipulation of the argument page leads to buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used.

CVE-2026-3169 [HIGH] CWE-119 CVE-2026-3169: A security vulnerability has been detected in Tenda F453 1.0.0.3. This impacts the function fromSafe A security vulnerability has been detected in Tenda F453 1.0.0.3. This impacts the function fromSafeEmailFilter of the file /goform/SafeEmailFilter of the component httpd. The manipulation of the argument page leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

CVE-2026-3168 [HIGH] CWE-119 CVE-2026-3168: A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromNatStaticSetting A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromNatStaticSetting of the file /goform/NatStaticSetting of the component httpd. Executing a manipulation of the argument page can lead to buffer overflow. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVE-2026-3167 [HIGH] CWE-119 CVE-2026-3167: A security flaw has been discovered in Tenda F453 1.0.0.3. The impacted element is the function form A security flaw has been discovered in Tenda F453 1.0.0.3. The impacted element is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component httpd. Performing a manipulation of the argument webSiteId results in buffer overflow. The attack may be initiated remotely. The exploit has been released to the public and may be used for

CVE-2026-3165 [HIGH] CWE-119 CVE-2026-3165: A vulnerability was determined in Tenda F453 1.0.0.3. Impacted is the function fromSetWifiGusetBasic A vulnerability was determined in Tenda F453 1.0.0.3. Impacted is the function fromSetWifiGusetBasic of the file /goform/AdvSetWrlsafeset of the component httpd. This manipulation of the argument mit_ssid causes buffer overflow. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.