Ghostwire

CVE-2026-7079: A weakness has been identified in Tenda F456 1.0.0.5. This affects the function fromAdvSetWan of the file...

HIGH CVSS 8.8 Exploit Available

Published: April 27, 2026 | Last Modified: April 27, 2026

Description

A weakness has been identified in Tenda F456 1.0.0.5. This affects the function fromAdvSetWan of the file /goform/AdvSetWan of the component httpd. This manipulation of the argument wanmode causes buffer overflow. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.

Ghostwire Analysis — What This Means Practically

High CVSS score indicates significant risk — exploitation could lead to substantial data exposure or system compromise.
Exploit code is reported to be available, increasing the likelihood of active exploitation.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

References

github.com/Litengzheng/vuldb_new/blob/main/F456/vul_130/README.md
vuldb.com/submit/798461
vuldb.com/vuln/359654
vuldb.com/vuln/359654/cti
www.tenda.com.cn/
www.tenable.com/cve/CVE-2026-7079
www.cnnvd.org.cn/home/globalSearch?keyword=CVE-2026-7079
nvd.nist.gov/vuln/detail/CVE-2026-7079