CVE-2026-6135

HIGH

A weakness has been identified in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromSetIpBind of the file /goform/SetIpBind. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks.

CVSS v3.1 Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Complexity

LOW

Privileges

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Published: 4/13/2026Modified: 4/30/2026

Related Intelligence (0)

No articles currently reference this CVE.

References (5)

https://github.com/Jimi-Lab/cve/issues/19Broken Link https://vuldb.com/submit/792877Third Party AdvisoryVDB Entry https://vuldb.com/vuln/356999Third Party AdvisoryVDB Entry https://vuldb.com/vuln/356999/ctiPermissions RequiredVDB Entry https://www.tenda.com.cn/Product