Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
Tenda i3 Router: Remote Attack Possible Through Wi-Fi Settings
CVE-2026-3971
Summary
A flaw in the Tenda i3 router's Wi-Fi settings allows an attacker to potentially take control of the device. This issue is serious because it allows a remote attack, which means an attacker doesn't need to be physically near the router. Update the router's software to the latest version to fix this problem.
Original title
A vulnerability has been found in Tenda i3 1.0.0.6(2204). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset. The manipulation of the argument index/GO le...
Original description
A vulnerability has been found in Tenda i3 1.0.0.6(2204). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset. The manipulation of the argument index/GO leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-121
Stack-based Buffer Overflow
- https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-i3-formwrlSSIDset-go-buffer...
- https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-i3-formwrlSSIDset-index-buf...
- https://vuldb.com/?ctiid.350406
- https://vuldb.com/?id.350406
- https://vuldb.com/?submit.768996
- https://vuldb.com/?submit.768997
- https://www.tenda.com.cn/
Published: 12 Mar 2026 · Updated: 13 Mar 2026 · First seen: 12 Mar 2026