Home / Vulnerability Intelligence / CVE-2026-3701

CVE-2026-3701 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 9, 2026

H3C Magic B1 - Buffer Overflow

Published: March 8, 2026Updated: March 9, 2026Remote Exploitable

Overview

H3C Magic B1 up to 100R004 contains a buffer overflow caused by manipulation of the argument param in Edit_BasicSSID_5G function in /goform/aspForm, letting remote attackers execute code, exploit requires crafted request.

Severity & Score

Severity: High

CVSS Score: 8.8

EPSS Score: 4.1%(Probability of exploitation in next 30 days)

Impact

Remote attackers can cause buffer overflow, potentially leading to remote code execution and full system compromise.

Mitigation

Update to the latest version or patch provided by the vendor.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 8, 2026

🟠 CVE-2026-3701 - High (8.8) A security vulnerability has been detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function Edit_BasicSSID_5G of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack ca... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-3701/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-3701
Severity: High
CVSS Score: 8.8
Type: buffer_overflow
Status: unconfirmed
EPSS: 4.1%
Social Posts: 1

CWE

CWE-119

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

4.1%Probability of exploitation in the next 30 days