Home / Vulnerability Intelligence / CVE-2026-3271

CVE-2026-3271 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: February 27, 2026

Tenda F453 - Buffer Overflow

Published: February 27, 2026Updated: February 27, 2026PoC AvailableRemote Exploitable

Overview

Tenda F453 1.0.0.3 contains a buffer overflow caused by manipulation of the "page" argument in /goform/P2pListFilterof in httpd, letting remote attackers cause memory corruption, exploit requires no special privileges.

Severity & Score

Severity: High

CVSS Score: 8.8

EPSS Score: 11.5%(Probability of exploitation in next 30 days)

Impact

Remote attackers can cause memory corruption, potentially leading to denial of service or code execution.

Mitigation

Update to the latest version.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Feb 27, 2026

🟠 CVE-2026-3271 - High (8.8) A vulnerability was found in Tenda F453 1.0.0.3. This impacts the function fromP2pListFilter of the file /goform/P2pListFilterof of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be launched r... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3271/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-3271
Severity: High
CVSS Score: 8.8
Type: buffer_overflow
Status: confirmed
EPSS: 11.5%
Social Posts: 1

CWE

CWE-119
CWE-120

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

11.5%Probability of exploitation in the next 30 days