F453 Firmware Tenda F453 Firmware

  1. Vendors
  2. Tenda
  3. F453 Firmware

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Tenda F453 Firmware.

By the Year

In 2026 there have been 24 vulnerabilities in Tenda F453 Firmware with an average score of 8.7 out of ten.

Year Vulnerabilities Average Score
2026 24 8.70

It may take a day or so for new F453 Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Tenda F453 Firmware Security Vulnerabilities

Tenda F453 1.0.0.3 HTTPD PPTPUserSetting stack overflow
CVE-2026-5021 8.8 - High - March 29, 2026

A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of the argument delno causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used.

Stack Overflow

Command injection in Tenda F453 1.0.0.3 FormWriteFacMac
CVE-2026-4554 6.3 - Medium - March 22, 2026

A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element is the function FormWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac results in command injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.

Command Injection

Tenda F453 1.0.0.3 Natlimit stack buf overflow
CVE-2026-4553 8.8 - High - March 22, 2026

A vulnerability was identified in Tenda F453 1.0.0.3. Impacted is the function fromNatlimit of the file /goform/Natlimit of the component Parameters Handler. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.

Stack Overflow

Stack-Based Buffer Overflow in Tenda F453 1.0.0.3 Parameters Handler
CVE-2026-4552 8.8 - High - March 22, 2026

A vulnerability was determined in Tenda F453 1.0.0.3. This issue affects the function fromVirtualSer of the file /goform/VirtualSer of the component Parameters Handler. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.

Stack Overflow

Tenda F453 1.0.0.3 ParamsHandler stack-based overflow
CVE-2026-4551 8.8 - High - March 22, 2026

A vulnerability was found in Tenda F453 1.0.0.3. This vulnerability affects the function fromSafeClientFilter of the file /goform/SafeClientFilter of the component Parameters Handler. Performing a manipulation of the argument menufacturer/Go results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Stack Overflow

Stack Buffer Overflow in Tenda F453 1.0.0.3 WrlclientSet
CVE-2026-3769 8.8 - High - March 08, 2026

A vulnerability was detected in Tenda F453 1.0.0.3. Affected by this issue is the function WrlclientSet of the file /goform/WrlclientSet. The manipulation of the argument GO results in stack-based buffer overflow. The attack can be executed remotely. The exploit is now public and may be used.

Stack Overflow

Tenda F453 1.0.0.3 Buffer Overflow in formWrlExtraSet GO param (Pub disclosed)
CVE-2026-3768 8.8 - High - March 08, 2026

A security vulnerability has been detected in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet. The manipulation of the argument GO leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

Stack Overflow

Tenda F453 v1.0.0.3 strcpy BOF in /goform/exeCommand (remote)
CVE-2026-3732 8.8 - High - March 08, 2026

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.

Stack Overflow

Tenda F453 1.0.0.3 Buffer Overflow in PPTPDClient via /goform/PPTPDClient
CVE-2026-3729 8.8 - High - March 08, 2026

A vulnerability was identified in Tenda F453 1.0.0.3/3.As. Impacted is the function fromPptpUserAdd of the file /goform/PPTPDClient. Such manipulation of the argument username/opttype leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.

Stack Overflow

Tenda F453 1.0.0.3/1 stack-based buffer overflow in setcfm
CVE-2026-3728 8.8 - High - March 08, 2026

A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCfm of the file /goform/setcfm. This manipulation of the argument funcname/funcpara1 causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Stack Overflow

Tenda F453 /goform/QuickIndex Stack-based Buffer Overflow
CVE-2026-3727 8.8 - High - March 08, 2026

A vulnerability was found in Tenda F453 1.0.0.3. This vulnerability affects the function sub_3C6C0 of the file /goform/QuickIndex. The manipulation of the argument mit_linktype/PPPOEPassword results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.

Stack Overflow

Remote Stack Buffer Overflow in Tenda F453 1.0.0.3 webExcptypemanFilter
CVE-2026-3726 8.8 - High - March 08, 2026

A vulnerability has been found in Tenda F453 1.0.0.3. This affects the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Stack Overflow

Buffer Overflow in Tenda F453 v1.0.0.3 httpd
CVE-2026-3399 8.8 - High - March 01, 2026

A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. The manipulation of the argument dips leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used.

Classic Buffer Overflow

Tenda F453 1.0.0.3 HTTPD Buffer Overflow via wanmode Manipulation
CVE-2026-3398 8.8 - High - March 01, 2026

A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromAdvSetWan of the file /goform/AdvSetWan of the component httpd. Executing a manipulation of the argument wanmode/PPPOEPassword can lead to buffer overflow. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.

Classic Buffer Overflow

Remote buffer overflow in Tenda F453 1.0.0.3 via L7ImForm
CVE-2026-3380 8.8 - High - March 01, 2026

A vulnerability was found in Tenda F453 1.0.0.3. This issue affects the function frmL7ImForm of the file /goform/L7Im. The manipulation of the argument page results in buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.

Classic Buffer Overflow

Tenda F453 v1.0.0.3 Remote Buffer Overflow in SetIpBind
CVE-2026-3379 8.8 - High - March 01, 2026

A vulnerability has been found in Tenda F453 1.0.0.3. This vulnerability affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Classic Buffer Overflow

Tenda F453 1.0.0.3 /goform/qossetting Buffer Overflow
CVE-2026-3378 8.8 - High - March 01, 2026

A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromqossetting of the file /goform/qossetting. Executing a manipulation of the argument qos can lead to buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.

Classic Buffer Overflow

Tenda F453 v1.0.0.3 Remote Buffer Overflow in fromSafeUrlFilter
CVE-2026-3377 8.8 - High - February 28, 2026

A vulnerability was detected in Tenda F453 1.0.0.3. Affected by this issue is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter. Performing a manipulation of the argument page results in buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.

Classic Buffer Overflow

Tenda F453 1.0.0.3: Remote Buffer Overflow in SafeMacFilter
CVE-2026-3376 8.8 - High - February 28, 2026

A security vulnerability has been detected in Tenda F453 1.0.0.3. Affected by this vulnerability is the function fromSafeMacFilter of the file /goform/SafeMacFilter. Such manipulation of the argument page leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

Classic Buffer Overflow

Tenda F453 1.0.0.3 httpd buffer overflow via fromAddressNat
CVE-2026-3275 8.8 - High - February 27, 2026

A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromAddressNat of the file /goform/addressNat of the component httpd. Executing a manipulation of the argument entrys can lead to buffer overflow. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks.

Classic Buffer Overflow

Remote Buffer Overflow in Tenda F453 1.0.0.3 httpd frmL7ProtForm (page arg)
CVE-2026-3274 8.8 - High - February 27, 2026

A security flaw has been discovered in Tenda F453 1.0.0.3. Affected by this issue is the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.

Classic Buffer Overflow

Tenda F453 1.0.0.3 HTTP Buffer Overflow in formWrlsafeset
CVE-2026-3273 8.8 - High - February 27, 2026

A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component httpd. Such manipulation of the argument mit_ssid_index leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.

Classic Buffer Overflow

Tenda F453 1.0.0.3 httpd Buffer Overflow via page param
CVE-2026-3272 8.8 - High - February 27, 2026

A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. This manipulation of the argument page causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Classic Buffer Overflow

Tenda F453 1.0.0.3 :: HTTPD buffer overflow via fromP2pListFilter
CVE-2026-3271 8.8 - High - February 27, 2026

A vulnerability was found in Tenda F453 1.0.0.3. This impacts the function fromP2pListFilter of the file /goform/P2pListFilterof of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.

Classic Buffer Overflow

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Tenda F453 Firmware or by Tenda? Click the Watch button to subscribe.

Tenda
Vendor

Tenda F453 Firmware
Product

subscribe