Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
Tenda F453 Router Remote Buffer Overflow Risk: Unauthorised Access
CVE-2026-3273
Summary
A security flaw in the Tenda F453 router's web interface can allow an attacker to remotely access the device. This could lead to unauthorized access and potentially allow the attacker to take control of the router. Update the router's firmware to the latest version to fix this vulnerability.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| tenda | f453_firmware | 1.0.0.3 | – |
Original title
A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component httpd. Such manipulation of...
Original description
A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component httpd. Such manipulation of the argument mit_ssid_index leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-120
Classic Buffer Overflow
- https://github.com/Litengzheng/vul_db/blob/main/F453/vul_73/README.md Exploit Third Party Advisory
- https://vuldb.com/?ctiid.347997 Permissions Required VDB Entry
- https://vuldb.com/?id.347997 Third Party Advisory VDB Entry
- https://vuldb.com/?submit.759606 Third Party Advisory VDB Entry
- https://www.tenda.com.cn/ Product
Published: 27 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026