CVE-2026-6120 | Tenda F451 1.0.0.7 httpd /goform/DhcpListClient fromDhcpListClient page stack-based overflow

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability labeled as critical has been found in Tenda F451 1.0.0.7. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. The manipulation of the argument page results in stack-based buffer overflow.

This vulnerability is reported as CVE-2026-6120. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-6120 | Tenda F451 1.0.0.7 httpd /goform/DhcpListClient fromDhcpListClient page stack-based overflow

Post correlati

CVE-2024-4406 | Xiaomi Pro 13 GetApps cross site scripting

CVE-2024-53184 | Linux Kernel up to 6.12.1 ubd container_of denial of service

CVE-2025-8428 | Centreon Infra Monitoring up to 23.10.27/24.04.17/24.10.12 HTTP Loader Widget cross site scripting

CVE-2024-32498 | OpenStack Cinder/Glance/Nova QCOW2 Image information disclosure