H3C Magic B0 and B1 devices are vulnerable to buffer overflow attacks due to specific function manipulations in the /goform/aspForm file.

🚨 EUVD-2026-23684 📊 Score: 8.7/10 (CVSS v3.1) 📦 Product: Magic B0 🏢 Vendor: H3C 📅 Updated: 2026-04-19 📝 A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affects the function Edit_BasicSSID of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack can be executed remotely. ... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23684 #cybersecurity #infosec #euvd #cve #vulnerability

🟠 CVE-2026-6560 - High (8.8) A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affects the function Edit_BasicSSID of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack can be execu... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6560/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🚨 EUVD-2026-23690 📊 Score: 8.7/10 (CVSS v3.1) 📦 Product: Magic B1 🏢 Vendor: H3C 📅 Updated: 2026-04-19 📝 A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow. It is possible to initiate the attack remotel... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23690 #cybersecurity #infosec #euvd #cve #vulnerability

🟠 CVE-2026-6563 - High (8.8) A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow. It is possible to initiate the ... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6563/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🚨 EUVD-2026-23716 📊 Score: 8.7/10 (CVSS v3.1) 📦 Product: Magic B1 🏢 Vendor: H3C 📅 Updated: 2026-04-19 📝 A vulnerability was detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function SetMobileAPInfoById of the file /goform/aspForm. Performing a manipulation of the argument param results in buffer overflow. Remote exploitation of the at... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23716 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23828 📊 Score: 8.7/10 (CVSS v3.1) 📦 Product: F451 🏢 Vendor: Tenda 📅 Updated: 2026-04-20 📝 A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter of the component httpd. Executing a manipulation of the argument page can lead to buffer overflow. The atta... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23828 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23830 📊 Score: 8.7/10 (CVSS v3.1) 📦 Product: F451 🏢 Vendor: Tenda 📅 Updated: 2026-04-20 📝 A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromSafeClientFilter of the file /goform/SafeClientFilter of the component httpd. The manipulation of the argument menufacturer/Go leads to buffer overflow. Remo... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23830 #cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-23827 📊 Score: 8.7/10 (CVSS v3.1) 📦 Product: F451 🏢 Vendor: Tenda 📅 Updated: 2026-04-20 📝 A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. Performing a manipulation of the argument dips results in buffer overflow. The attack may be in... 🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-23827 #cybersecurity #infosec #euvd #cve #vulnerability

🟠 CVE-2026-6630 - High (8.8) A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer of the component httpd. Performing a manipulation of the argument dips results in buffer overflow. The ... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6630/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-6631 - High (8.8) A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter of the component httpd. Executing a manipulation of the argument page can lead to buffer ov... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6631/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-6581 - High (8.8) A vulnerability was detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function SetMobileAPInfoById of the file /goform/aspForm. Performing a manipulation of the argument param results in buffer overflow. Remote exploita... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6581/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack