Access Control Vulnerability in Tenda 4G03 Pro Router
CVE-2026-5526

6.9MEDIUM

Key Information:

Vendor: Tenda
Status: 4g03 Pro
Vendor: CVE Published:; 4 April 2026

🔔 Create Tenda Vulnerability Alert

What is CVE-2026-5526?

A security flaw has been identified in the Tenda 4G03 Pro router, specifically affecting versions up to 1.0, 1.1, and 04.03.01.53. This vulnerability arises from unknown functionality within the /bin/httpd file, leading to improper access controls. Attackers may exploit this flaw remotely, which poses a significant risk as the exploit has been publicly disclosed.

Affected Version(s)

4G03 Pro 1.0

4G03 Pro 1.1

4G03 Pro 04.03.01.0

References

https://vuldb.com/vuln/355279

https://vuldb.com/vuln/355279/cti

signaturepermissions-required

https://vuldb.com/submit/782052

third-party-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 4, 2026
Vulnerability Reserved
Apr 4, 2026

Credit

CoreNode (VulDB User)

VulDB Vulnerability Moderation Team

CVE-2026-5526 Data

.