CVE-2026-6122 | Tenda F451 1.0.0.7 httpd /goform/L7Prot frmL7ProtForm page stack-based overflow

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability described as critical has been identified in Tenda F451 1.0.0.7. Affected by this issue is the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Such manipulation of the argument page leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2026-6122. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-6122 | Tenda F451 1.0.0.7 httpd /goform/L7Prot frmL7ProtForm page stack-based overflow

Post correlati

CVE-2025-48866 | OWASP ModSecurity up to 2.9.9 sanitiseArg/sanitizeArg excessive platform resource consumption within a loop

CVE-2025-13689 | IBM DataStage on Cloud Pak up to 5.3.0 unrestricted upload

CVE-2024-49649 | Abdul Hakeem Build App Online Plugin up to 1.0.23 on WordPress Include/Require filename control

CVE-2025-6213 | Nginx Cache Purge Preload Plugin up to 2.1.1 on WordPress nppp_preload_cache_on_update HTTP_REFERERER privilege escalation