PT-2026-36037 · Tenda · Tenda 4G300

Haaalion

Published

2026-04-29

Updated

2026-04-30

CVE-2026-7470

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Tenda 4G300 version US 4G300V1.0Mt V1.01.42 CN TDC01

Description A stack-based buffer overflow exists in the sub 427C3C() function within the /goform/SafeMacFilter file. This issue occurs due to the improper manipulation of the page argument, which allows for remote exploitation and potential remote code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Buffer Overflow

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-121

Related Identifiers

BDU:2026-06160

CVE-2026-7470

Affected Products

Tenda 4G300

PT-2026-36037 · Tenda · Tenda 4G300

CVE-2026-7470

Weakness Enumeration

Related Identifiers

Affected Products

References · 12