CVE-2026-3399

Name of the Vulnerable Software and Affected Versions Tenda F453 version 1.0.0.3

Description A buffer overflow issue exists in the fromGstDhcpSetSer function within the httpd component of Tenda F453 routers. The issue is triggered by manipulating the dips argument. This allows for remote attacks. A publicly available exploit exists, potentially enabling malicious actors to exploit this issue. Reports indicate increased targeting of Tenda F453 devices related to this issue. The vulnerable file is located at /goform/GstDhcpSetSer.

Recommendations For Tenda F453 version 1.0.0.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.