High severity8.8NVD Advisory· Published Apr 30, 2026· Updated Apr 30, 2026

CVE-2026-7470

Description

A flaw has been found in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. Affected is the function sub_427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used.

Affected products

Tenda/4g300 Firmware
cpe:2.3:o:tenda:4g300_firmware:1.01.42_cn_tdc01:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/Axelioc/CVE/blob/main/Tenda/US_4G300/sub_427C3C/sub_427C3C.mdnvdBroken LinkThird Party Advisory
vuldb.com/submit/804269nvdThird Party AdvisoryVDB Entry
vuldb.com/vuln/360206nvdThird Party AdvisoryVDB Entry
vuldb.com/vuln/360206/ctinvdPermissions RequiredVDB Entry
www.tenda.com.cnnvdProduct

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000