A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9 . This affects the function fromDhcpListClient of the component HTTP Handler . Performing a manipulation of the argument page results in stack-based buffer overflow. This vulnerability is reported as CVE-2026-36785 . The attack is possible to be carried out remotely. No exploit exists.