CVE ID :CVE-2026-3972 Published : March 12, 2026, 2:15 a.m. | 1 hour, 26 minutes ago Description :A vulnerability was found in Tenda W3 1.0.0.3(2204). Affected by this issue is the function formSetCfm of the file /goform/setcfm of the component HTTP Handler. The manipulation of the argument funcpara1 results in stack-based buffer overflow. The attack can only be performed from the local network. The exploit has been made public and could be used. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...