← Back
2026-04-26 10:0CVE-2026-7032VulDB
PUBLISHED5.2CWE-120CWE-119

Tenda F456 SafeEmailFilter buffer overflow

A flaw has been found in Tenda F456 1.0.0.5. Affected is the function SafeEmailFilter of the file /goform/SafeEmailFilter. This manipulation of the argument page causes buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used.

Problem type

Affected products

Tenda

F456

1.0.0.5 - AFFECTED

References

VDB-359612 | Tenda F456 SafeEmailFilter buffer overflow

https://vuldb.com/vuln/359612

vdb-entrytechnical-description
VDB-359612 | CTI Indicators (IOB, IOC, IOA)

https://vuldb.com/vuln/359612/cti

signaturepermissions-required
Submit #798453 | Tenda F456 v1.0.0.5 Stack-based Buffer Overflow

https://vuldb.com/submit/798453

third-party-advisory
github.com

https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_122/README.md

exploit
tenda.com.cn

https://www.tenda.com.cn/

product

JSON source

https://cveawg.mitre.org/api/cve/CVE-2026-7032
Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2026-7032",
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "dateUpdated": "2026-04-26T10:00:19.927Z",
    "dateReserved": "2026-04-25T14:20:54.853Z",
    "datePublished": "2026-04-26T10:00:19.927Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB",
        "dateUpdated": "2026-04-26T10:00:19.927Z"
      },
      "title": "Tenda F456 SafeEmailFilter buffer overflow",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw has been found in Tenda F456 1.0.0.5. Affected is the function SafeEmailFilter of the file /goform/SafeEmailFilter. This manipulation of the argument page causes buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used."
        }
      ],
      "affected": [
        {
          "vendor": "Tenda",
          "product": "F456",
          "versions": [
            {
              "version": "1.0.0.5",
              "status": "affected"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "Buffer Overflow",
              "cweId": "CWE-120",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "Memory Corruption",
              "cweId": "CWE-119",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://vuldb.com/vuln/359612",
          "name": "VDB-359612 | Tenda F456 SafeEmailFilter buffer overflow",
          "tags": [
            "vdb-entry",
            "technical-description"
          ]
        },
        {
          "url": "https://vuldb.com/vuln/359612/cti",
          "name": "VDB-359612 | CTI Indicators (IOB, IOC, IOA)",
          "tags": [
            "signature",
            "permissions-required"
          ]
        },
        {
          "url": "https://vuldb.com/submit/798453",
          "name": "Submit #798453 | Tenda F456 v1.0.0.5 Stack-based Buffer Overflow",
          "tags": [
            "third-party-advisory"
          ]
        },
        {
          "url": "https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_122/README.md",
          "tags": [
            "exploit"
          ]
        },
        {
          "url": "https://www.tenda.com.cn/",
          "tags": [
            "product"
          ]
        }
      ],
      "metrics": [
        {},
        {
          "cvssV3_1": {
            "version": "3.1",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
            "baseScore": 8.8,
            "baseSeverity": "HIGH"
          }
        },
        {
          "cvssV3_0": {
            "version": "3.0",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
            "baseScore": 8.8,
            "baseSeverity": "HIGH"
          }
        },
        {
          "cvssV2_0": {
            "version": "2.0",
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR",
            "baseScore": 9
          }
        }
      ],
      "timeline": [
        {
          "time": "2026-04-25T00:00:00.000Z",
          "lang": "en",
          "value": "Advisory disclosed"
        },
        {
          "time": "2026-04-25T02:00:00.000Z",
          "lang": "en",
          "value": "VulDB entry created"
        },
        {
          "time": "2026-04-25T16:26:15.000Z",
          "lang": "en",
          "value": "VulDB entry last update"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "LtzHust2 (VulDB User)",
          "type": "reporter"
        }
      ]
    }
  }
}