Tenda F453 Stack-Based Buffer Overflow Vulnerability (CVE-2026-5021)
A stack-based buffer overflow vulnerability in Tenda F453 1.0.0.3 allows a remote attacker to execute arbitrary code by manipulating the 'delno' argument in the fromPPTPUserSetting function of the /goform/PPTPUserSetting component's httpd process.
A stack-based buffer overflow vulnerability, identified as CVE-2026-5021, has been discovered in Tenda F453 router version 1.0.0.3. This vulnerability resides within the fromPPTPUserSetting function of the /goform/PPTPUserSetting component, specifically in the httpd process. The vulnerability can be triggered by manipulating the delno argument. Successful exploitation allows remote attackers to potentially execute arbitrary code on the affected device. Publicly available exploit code…
Detection coverage 2
Detect Tenda F453 PPTPUserSetting Buffer Overflow Attempt
criticalDetects attempts to exploit CVE-2026-5021 by identifying unusually long 'delno' parameters in requests to /goform/PPTPUserSetting.
Detect HTTP POST to PPTPUserSetting
highDetects HTTP POST requests to /goform/PPTPUserSetting, which could be indicative of exploit activity.
Detection queries are kept inside the platform. Get full rules →