ГлавнаяУязвимости → CVE-2026-3976
8.8высокая

CVE-2026-3976

Описание

A weakness has been identified in Tenda W3 1.0.0.3(2204). Impacted is the function formWifiMacFilterSet of the file /goform/WifiMacFilterSet of the component POST Parameter Handler. Executing a manipulation of the argument index/GO can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made available to the public and could be used for attacks.

Затрагиваемое ПО
Tenda W3 firmwareTenda W3
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-w3-formWifiMacFilterSet-go-buffer-overflowhttps://github.com/Svigo-o/Tenda_vul/tree/main/tenda-w3-formWifiMacFilterSet-index-buffer-overflowhttps://vuldb.com/?ctiid.350411https://vuldb.com/?id.350411https://vuldb.com/?submit.769179https://vuldb.com/?submit.769180https://www.tenda.com.cn/