Tenda F453 WriteFacMac FormWriteFacMac privilege escalation

A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element is the function FormWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac results in command injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.

Problem type

Affected products

Tenda

F453

1.0.0.3 - AFFECTED

References

VDB-352381 | Tenda F453 WriteFacMac FormWriteFacMac privilege escalation

https://vuldb.com/?id.352381

vdb-entrytechnical-description

VDB-352381 | CTI Indicators (IOB, IOC, TTP, IOA)

https://vuldb.com/?ctiid.352381

signaturepermissions-required

Submit #774933 | Tenda F453 v1.0.0.3 Command Injection

https://vuldb.com/?submit.774933

third-party-advisory

github.com

https://github.com/Litengzheng/vul_db/blob/main/F453/vul_95/README.md

exploit

tenda.com.cn

https://www.tenda.com.cn/

product

GitHub Security Advisories

GHSA-gh64-hffv-c24x

A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element is the function...

https://github.com/advisories/GHSA-gh64-hffv-c24x

nvd.nist.gov

https://nvd.nist.gov/vuln/detail/CVE-2026-4554

github.com

https://github.com/Litengzheng/vul_db/blob/main/F453/vul_95/README.md

vuldb.com

https://vuldb.com/?ctiid.352381

vuldb.com

https://vuldb.com/?id.352381

vuldb.com

https://vuldb.com/?submit.774933

tenda.com.cn

https://www.tenda.com.cn

github.com

https://github.com/advisories/GHSA-gh64-hffv-c24x

JSON source

https://cveawg.mitre.org/api/cve/CVE-2026-4554

Click to expand

{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2026-4554",
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "dateUpdated": "2026-03-22T16:51:18.212Z",
    "dateReserved": "2026-03-21T16:57:19.753Z",
    "datePublished": "2026-03-22T16:51:18.212Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB",
        "dateUpdated": "2026-03-22T16:51:18.212Z"
      },
      "title": "Tenda F453 WriteFacMac FormWriteFacMac privilege escalation",
      "descriptions": [
        {
          "lang": "en",
          "value": "A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element is the function FormWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac results in command injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks."
        }
      ],
      "affected": [
        {
          "vendor": "Tenda",
          "product": "F453",
          "cpes": [
            "cpe:2.3:o:tenda:f453_firmware:*:*:*:*:*:*:*:*"
          ],
          "versions": [
            {
              "version": "1.0.0.3",
              "status": "affected"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "Command Injection",
              "cweId": "CWE-77",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "Injection",
              "cweId": "CWE-74",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://vuldb.com/?id.352381",
          "name": "VDB-352381 | Tenda F453 WriteFacMac FormWriteFacMac privilege escalation",
          "tags": [
            "vdb-entry",
            "technical-description"
          ]
        },
        {
          "url": "https://vuldb.com/?ctiid.352381",
          "name": "VDB-352381 | CTI Indicators (IOB, IOC, TTP, IOA)",
          "tags": [
            "signature",
            "permissions-required"
          ]
        },
        {
          "url": "https://vuldb.com/?submit.774933",
          "name": "Submit #774933 | Tenda F453 v1.0.0.3 Command Injection",
          "tags": [
            "third-party-advisory"
          ]
        },
        {
          "url": "https://github.com/Litengzheng/vul_db/blob/main/F453/vul_95/README.md",
          "tags": [
            "exploit"
          ]
        },
        {
          "url": "https://www.tenda.com.cn/",
          "tags": [
            "product"
          ]
        }
      ],
      "metrics": [
        {},
        {
          "cvssV3_1": {
            "version": "3.1",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM"
          }
        },
        {
          "cvssV3_0": {
            "version": "3.0",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM"
          }
        },
        {
          "cvssV2_0": {
            "version": "2.0",
            "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
            "baseScore": 6.5
          }
        }
      ],
      "timeline": [
        {
          "time": "2026-03-21T00:00:00.000Z",
          "lang": "en",
          "value": "Advisory disclosed"
        },
        {
          "time": "2026-03-21T01:00:00.000Z",
          "lang": "en",
          "value": "VulDB entry created"
        },
        {
          "time": "2026-03-21T18:02:31.000Z",
          "lang": "en",
          "value": "VulDB entry last update"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "LtzHust (VulDB User)",
          "type": "reporter"
        }
      ]
    }
  }
}