Skip to content
CVSS 8.8 · HIGH

CVE-2026-7031

A vulnerability was detected in Tenda F456 1.0.0.5. This impacts the function fromSafeMacFilter of the file /goform/SafeMacFilter. The manipulation of the argument page results in buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be used.

Ver en NVD

Análisis

This is a buffer overflow in the firmware of a specific Tenda router model. The instructions explicitly classify vendor-specific firmware for consumer IoT devices like Tenda routers as not relevant to the MexicoDev stack, which focuses on web/mobile/backend development and server infrastructure.

Severidad

Puntaje: 8.8(HIGH)
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AV: NETWORK
AC: LOW
PR: LOW
UI: NONE
S: UNCHANGED
C: HIGH
I: HIGH
A: HIGH
Tipo de falla (CWE): CWE-119CWE-120

EPSS

Probabilidad de explotación (próx. 30 días): 0.0008 (0.1%)
Percentil: 23.2%
EPSS: 2026-05-06

Afecta

tenda:f456_firmwaretenda:f456

Descripción técnica

A vulnerability was detected in Tenda F456 1.0.0.5. This impacts the function fromSafeMacFilter of the file /goform/SafeMacFilter. The manipulation of the argument page results in buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be used.

Publicada: 26/4/2026, 10:16:02
Última modificación: 29/4/2026, 18:29:13

Referencias

InicioEventosBlogRecursosEquipo