CVE-2025-15045

CVE-2025-15045 affects Tenda WH450 1.0.0.18. The vulnerability lies in the HTTP Request Handler’s Natlimit function, where manipulating the page argument triggers a stack-based buffer overflow. The flaw allows remote initiation and, per sources, an exploit has been published and may be used. Seve...

CVE-2025-15007

A security vulnerability has been detected in Tenda WH450 1.0.0.18. Affected by this issue is some unknown functionality of the file /goform/L7Im of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter Username in the file/goform/PPTPDClient of the component HTTP Request Handler, which could result in a stack...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter netmsk in the file/goform/PPTPClient of the component HTTP Request Handler, which may result in a stack buffer...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page in the file/goform/Natlimit of the component HTTP Request Handler, which could result in a stack buffer...

CVE-2025-15008

CVE-2025-15008 affects Tenda WH450 1.0.0.18. The vulnerability is a stack-based overflow in the HTTP Request Handler’s /goform/L7Port file, triggered by manipulating the page argument. This can be exploited remotely and, per sources, the exploit is public. Multiple connected feeds confirm the aff...

EUVD-2025-204683

A vulnerability was detected in Tenda WH450 1.0.0.18. This affects an unknown part of the file /goform/L7Port of the component HTTP Request Handler. Performing manipulation of the argument page results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now public...

CVE-2025-15008

A vulnerability was detected in Tenda WH450 1.0.0.18. This affects an unknown part of the file /goform/L7Port of the component HTTP Request Handler. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now publ...

CVE-2025-15007 Tenda WH450 HTTP Request L7Im stack-based overflow

A security vulnerability has been detected in Tenda WH450 1.0.0.18. Affected by this issue is some unknown functionality of the file /goform/L7Im of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-15007

CVE-2025-15007 affects Tenda WH450 1.0.0.18. The vulnerability lies in the HTTP Request Handler’s /goform/L7Im, where manipulating the page argument triggers a stack-based buffer overflow. It is exploitable remotely and has publicly available PoC/exploit code. Publicly disclosed details indicate ...

PT-2025-52620

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A flaw exists in the HTTP Request Handler component of the software. Specifically, the issue resides in an unknown part of the /goform/L7Port file. Manipulating the page argument can trigger a stack-bas...

PT-2025-52619

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A weakness exists in the Tenda WH450 device. The issue is a stack-based buffer overflow within the HTTP Request Handler component, specifically related to the file '/goform/CheckTools'. Manipulation of...

EUVD-2025-204667

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

CVE-2025-14994

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

CVE-2025-14994 Tenda FH1201/FH1206 HTTP Request webtypelibrary strcat stack-based overflow

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

Tenda AC18 安全漏洞

Tenda AC18 is a router from Tenda China. A security vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an improper handling of the parameter mac in the strcpy function of the file /goform/GetParentControlInfo in the component HTTP Request Handler, which may result in a...

CVE-2025-14879

A weakness has been identified in Tenda WH450 1.0.0.18. Affected is an unknown function of the file /goform/onSSIDChange of the component HTTP Request Handler. This manipulation of the argument ssidindex causes stack-based buffer overflow. It is possible to initiate the attack remotely. The explo...

CVE-2025-14879

CVE-2025-14879 affects Tenda WH450 v1.0.0.18. The vulnerability is in the HTTP Request Handler’s /goform/onSSIDChange function, where manipulating the ssid_index argument leads to a stack-based buffer overflow. It enables remote initiation and exploitation, with public PoC/reference material avai...

CVE-2025-14879 Tenda WH450 HTTP Request onSSIDChange stack-based overflow

A weakness has been identified in Tenda WH450 1.0.0.18. Affected is an unknown function of the file /goform/onSSIDChange of the component HTTP Request Handler. This manipulation of the argument ssidindex causes stack-based buffer overflow. It is possible to initiate the attack remotely. The explo...

CVE-2025-14878

A security flaw has been discovered in Tenda WH450 1.0.0.18. This impacts an unknown function of the file /goform/wirelessRestart of the component HTTP Request Handler. The manipulation of the argument GO results in stack-based buffer overflow. The attack may be performed from remote. The exploit...