CVE Catalog

CVE-2026-9389

High
Published: Translated: NVD NIST

Summary

A vulnerability has been detected in Tenda F456 version 1.0.0.5, affecting the frmL7ImForm function in the /goform/L7Im file. Manipulation of the page argument leads to buffer overflow, which can be exploited by a remote attacker.

Risk Assessment

This vulnerability poses a risk of remote attacks, potentially leading to unauthorized access or destabilization of the system.

Recommendation

It is recommended to update the Tenda F456 device firmware to the latest version to mitigate this vulnerability and to monitor the system for unauthorized access attempts.

Original NVD description (English source)

A security vulnerability has been detected in Tenda F456 1.0.0.5. This affects the function frmL7ImForm of the file /goform/L7Im. The manipulation of the argument page leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS