CVE-2026-3729 | Tenda F453 1.0.0.3/3.As /goform/PPTPDClient fromPptpUserAdd username/opttype stack-based overflow

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability classified as critical was found in Tenda F453 1.0.0.3/3.As. Impacted is the function fromPptpUserAdd of the file /goform/PPTPDClient. Such manipulation of the argument username/opttype leads to stack-based buffer overflow.

This vulnerability is documented as CVE-2026-3729. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-3729 | Tenda F453 1.0.0.3/3.As /goform/PPTPDClient fromPptpUserAdd username/opttype stack-based overflow

Post correlati

CVE-2025-26856 | I-O DATA DEVICE UD-LT2 up to 1.00.008_SE os command injection

CVE-2026-1431 | Booking Calendar Plugin up to 10.14.13 on WordPress wpbc_ajax_WPBC_FLEXTIMELINE_NAV authorization

CVE-2025-50460 | ms-swift up to 3.6.3 PyYAML deserialization

CVE-2024-30269 | DataEase up to 2.4.x getEngine.js information disclosure