CVE-2026-3727 PUBLISHED

A vulnerability was found in Tenda F453 1.0.0.3. This vulnerability affects the function sub_3C6C0 of the file /goform/QuickIndex. The manipulation of the argument mit_linktype/PPPOEPassword results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been made public and could be used.

• LtzHust (VulDB User) reporter

• VDB-349705 | Tenda F453 QuickIndex sub_3C6C0 stack-based overflow
• VDB-349705 | CTI Indicators (IOB, IOC, IOA)
• Submit #766932 | Tenda F453 v1.0.0.3 Stack-based Buffer Overflow
• https://github.com/Litengzheng/vul_db/blob/main/F453/vul_96/README.md
• https://www.tenda.com.cn/

• Stack-based Buffer Overflow CWE
• Memory Corruption CWE