CVE-2026-5841

HIGH WAF: High

CVSS 7.3 Published: 2026-04-09

CWE-22

A weakness has been identified in Tenda i3 1.0.0.6(2204). The affected element is the function R7WebsSecurityHandler of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.

WAF Coverage Analysis

Path Traversal High WAF Coverage

OWASP: A01:2021 Broken Access Control

930xxx - Local File Inclusion

References

github.com
vuldb.com
vuldb.com
vuldb.com
www.tenda.com.cn

Back to CVE Database