CVE-2026-6137 | Tenda F451 1.0.0.7_cn_svn7958 /goform/AdvSetWan fromAdvSetWan wanmode/PPPOEPassword stack-based overflow

Inserito da Angelo Barbosa | Apr 12, 2026 | CVE

A vulnerability classified as critical was found in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromAdvSetWan of the file /goform/AdvSetWan. The manipulation of the argument wanmode/PPPOEPassword results in stack-based buffer overflow.

This vulnerability is known as CVE-2026-6137. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-6137 | Tenda F451 1.0.0.7_cn_svn7958 /goform/AdvSetWan fromAdvSetWan wanmode/PPPOEPassword stack-based overflow

Post correlati

CVE-2024-11479 | Issuetrak 17.1 cross site scripting

CVE-2026-23415 | Linux Kernel up to 6.18.20/6.19.10/7.0-rc5 kernel/futex/core.c futex_key_to_node_opt use after free

CVE-2024-27029 | Linux Kernel up to 6.7.10/6.8.1 amdgpu out-of-bounds (e1e076bda4fd/1f24b3040f2b/6540ff6482c1)

CVE-2025-9531 | Portabilis i-Educar up to 2.10 Agenda /intranet/agenda.php cod_agenda sql injection