LeakyCreds
NewInstant webhook alerts now available ā€” notified within seconds of any credential detection.Learn more ā†’
Home / Vulnerability Intelligence / CVE-2026-7019

CVE-2026-7019 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: April 26, 2026

Tenda F456 - Buffer Overflow

Published: April 26, 2026Updated: April 26, 2026Remote Exploitable

Overview

Tenda F456 1.0.0.5 contains a buffer overflow caused by manipulation of the "menufacturer/Go" argument in /goform/P2pListFilter, letting remote attackers cause memory corruption, exploit requires no special privileges.

Severity & Score

Severity: High
CVSS Score: 8.8
EPSS Score: 0.0%(Probability of exploitation in next 30 days)

Impact

Remote attackers can cause memory corruption, potentially leading to denial of service or remote code execution.

Mitigation

Update to the latest version.

References

Social Media Activity(4 posts)

OffSequence
OffSequence
@offseq
Apr 26, 2026

šŸ›‘ HIGH severity: Buffer overflow in Tenda F456 (v1.0.0.5) via /goform/P2pListFilter ('menufacturer/Go'). Public exploit available, no patch. Limit exposure & monitor systems. CVE-2026-7019. https://radar.offseq.com/threat/cve-2026-7019-buffer-overflow-in-tenda-f456-8fc2e156 #OffSeq #Tenda #Vuln #BufferOverflow

View original post
TheHackerWire
TheHackerWire
@thehackerwire
Apr 26, 2026

šŸŸ  CVE-2026-7019 - High (8.8) A vulnerability was identified in Tenda F456 1.0.0.5. The impacted element is the function fromP2pListFilter of the file /goform/P2pListFilter. The manipulation of the argument menufacturer/Go leads to buffer overflow. The attack is possible to be... šŸ”— https://www.thehackerwire.com/vulnerability/CVE-2026-7019/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post
OffSequence
OffSequence
@offseq
Apr 26, 2026

šŸ›‘ HIGH severity: Buffer overflow in Tenda F456 (v1.0.0.5) via /goform/P2pListFilter ('menufacturer/Go'). Public exploit available, no patch. Limit exposure & monitor systems. CVE-2026-7019. https://radar.offseq.com/threat/cve-2026-7019-buffer-overflow-in-tenda-f456-8fc2e156 #OffSeq #Tenda #Vuln #BufferOverflow

View original post
TheHackerWire
TheHackerWire
@thehackerwire
Apr 26, 2026

šŸŸ  CVE-2026-7019 - High (8.8) A vulnerability was identified in Tenda F456 1.0.0.5. The impacted element is the function fromP2pListFilter of the file /goform/P2pListFilter. The manipulation of the argument menufacturer/Go leads to buffer overflow. The attack is possible to be... šŸ”— https://www.thehackerwire.com/vulnerability/CVE-2026-7019/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID
CVE-2026-7019
Severity
High
CVSS Score
8.8
Type
buffer_overflow
Status
new
EPSS
0.0%
Social Posts
4

CWE

  • CWE-119

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.0%Probability of exploitation in the next 30 days