Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
CVE-2026-9389: Tenda F456 Router: Remote Buffer Overflow Risk
CVE-2026-9389
Summary
A vulnerability in the Tenda F456 router's software (version 1.0.0.5) allows an attacker to remotely exploit a buffer overflow, potentially causing the device to crash or become compromised. This could lead to unauthorized access to your network and data. We recommend updating the router's software to the latest version to fix this issue.
Original title
A security vulnerability has been detected in Tenda F456 1.0.0.5. This affects the function frmL7ImForm of the file /goform/L7Im. The manipulation of the argument page leads to buffer overflow. The...
Original description
A security vulnerability has been detected in Tenda F456 1.0.0.5. This affects the function frmL7ImForm of the file /goform/L7Im. The manipulation of the argument page leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-120
Classic Buffer Overflow
Published: 24 May 2026 · Updated: 31 May 2026 · First seen: 26 May 2026