CVE-2026-27513 – Tenda F3 CSRF in Web Management Interface

CVE ID : CVE-2026-27513

Published : Feb. 23, 2026, 5:23 p.m. | 1 hour, 42 minutes ago

Description : Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55_multi contains a cross-site request forgery (CSRF) vulnerability in the web-based administrative interface. The interface does not implement anti-CSRF protections, allowing an attacker to induce an authenticated administrator to submit state-changing requests, which can result in unauthorized configuration changes.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…