CVE-2026-3377
Remote Buffer Overflow in Tenda F453 SafeUrlFilter Function
Publication date: 2026-03-01
Last updated on: 2026-03-03
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | f453_firmware | 1.0.0.3 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': 'CVE-2026-3377 is a critical buffer overflow vulnerability found in the Tenda F453 router, version 1.0.0.3. It exists in the function fromSafeUrlFilter within the file /goform/SafeUrlFilter. The vulnerability arises because the "page" argument is improperly handled: input data is copied from a source buffer to a destination buffer without verifying that the input size is smaller than the output buffer size. This leads to a classic buffer overflow condition.'}, {'type': 'paragraph', 'content': 'An attacker can remotely manipulate the "page" parameter to cause memory corruption, potentially leading to arbitrary code execution or denial of service. The exploit is publicly available, making it easier for attackers to exploit this vulnerability.'}] [2, 3]
How can this vulnerability impact me? :
This vulnerability can have severe impacts including compromising the confidentiality, integrity, and availability of the affected device. Specifically, an attacker can remotely execute arbitrary code or cause a denial of service by exploiting the buffer overflow in the fromSafeUrlFilter function.
Because the attack can be launched remotely without authentication, exploitation is straightforward and poses a significant security risk to users of the Tenda F453 router version 1.0.0.3.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': 'The vulnerability in Tenda F453 1.0.0.3 is triggered by manipulating the "page" parameter in the /goform/SafeUrlFilter endpoint, which causes a buffer overflow. Detection can focus on monitoring HTTP requests targeting this endpoint with unusual or oversized "page" parameter values.'}, {'type': 'paragraph', 'content': 'Since the exploit is public and the attack is remote, network intrusion detection systems (NIDS) or web application firewalls (WAF) can be configured to alert on suspicious requests to /goform/SafeUrlFilter containing the "page" parameter.'}, {'type': 'paragraph', 'content': 'Specific commands to detect the vulnerability on the device itself are not provided in the available resources.'}] [2, 3]
What immediate steps should I take to mitigate this vulnerability?
No known mitigations or countermeasures have been published for this vulnerability.
The recommended immediate step is to replace the affected Tenda F453 router running firmware version 1.0.0.3 with an alternative device to avoid risk.