CVE-2025-7468

CVE-2025-7468 describes a buffer overflow in the Tenda FH1201, affecting the HTTP POST Request Handler’s /goform/fromSafeUrlFilter. The root cause is improper validation of the page parameter in fromSafeUrlFilter, enabling remote exploitation. Affected product: Tenda FH1201 (1.2.0.14). Impact per...

CVE-2025-7468 Tenda FH1201 HTTP POST Request fromSafeUrlFilter buffer overflow

A vulnerability has been found in Tenda FH1201 1.2.0.14 and classified as critical. This vulnerability affects the function fromSafeUrlFilter of the file /goform/fromSafeUrlFilter of the component HTTP POST Request Handler. The manipulation of the argument page leads to buffer overflow. The attac...

CVE-2025-7465

A vulnerability classified as critical was found in Tenda FH1201 1.2.0.14. Affected by this vulnerability is the function fromRouteStatic of the file /goform/fromRouteStatic of the component HTTP POST Request Handler. The manipulation of the argument page leads to buffer overflow. The attack can ...

CVE-2025-7465

The CVE-2025-7465 entry concerns Tenda FH1201 (firmware 1.2.0.14). The issue is a buffer overflow in the fromRouteStatic handler of the HTTP POST Request Handler, triggered by manipulating the page argument in /goform/fromRouteStatic. This vulnerability is exploitable remotely and the exploit has...

CVE-2025-7465 Tenda FH1201 HTTP POST Request fromRouteStatic buffer overflow

A vulnerability classified as critical was found in Tenda FH1201 1.2.0.14. Affected by this vulnerability is the function fromRouteStatic of the file /goform/fromRouteStatic of the component HTTP POST Request Handler. The manipulation of the argument page leads to buffer overflow. The attack can ...

CVE-2025-7465 Tenda FH1201 HTTP POST Request fromRouteStatic buffer overflow

A vulnerability classified as critical was found in Tenda FH1201 1.2.0.14. Affected by this vulnerability is the function fromRouteStatic of the file /goform/fromRouteStatic of the component HTTP POST Request Handler. The manipulation of the argument page leads to buffer overflow. The attack can ...

CVE-2025-7463

A vulnerability was found in Tenda FH1201 1.2.0.14. It has been declared as critical. This vulnerability affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP POST Request Handler. The manipulation of the argument mitssid leads to buffer overflow. The atta...

CVE-2025-7463 Tenda FH1201 HTTP POST Request AdvSetWrlsafeset formWrlsafeset buffer overflow

A vulnerability was found in Tenda FH1201 1.2.0.14. It has been declared as critical. This vulnerability affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP POST Request Handler. The manipulation of the argument mitssid leads to buffer overflow. The atta...

CVE-2025-7463 Tenda FH1201 HTTP POST Request AdvSetWrlsafeset formWrlsafeset buffer overflow

A vulnerability was found in Tenda FH1201 1.2.0.14. It has been declared as critical. This vulnerability affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP POST Request Handler. The manipulation of the argument mitssid leads to buffer overflow. The atta...

CVE-2025-7463

The CVE-2025-7463 entry describes a buffer overflow in Tenda FH1201 1.2.0.14. Affects the HTTP POST Request Handler function formWrlsafeset, via manipulation of the mit_ssid argument in /goform/AdvSetWrlsafeset. Exploitation is remote and the vulnerability has been publicly disclosed. Connected s...

CVE-2025-7460

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

CVE-2025-7460 TOTOLINK T6 HTTP POST Request cstecgi.cgi setWiFiAclRules buffer overflow

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

CVE-2025-7460

CVE-2025-7460 affects TOTOLINK T6 firmware 4.1.5cu.748_B20211015. The vulnerable component is the HTTP POST Request Handler at /cgi-bin/cstecgi.cgi, in the function setWiFiAclRules, where manipulating the argument mac leads to a buffer overflow. The issue can be exploited remotely and public expl...

CVE-2025-7460 TOTOLINK T6 HTTP POST Request cstecgi.cgi setWiFiAclRules buffer overflow

A vulnerability has been found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this vulnerability is the function setWiFiAclRules of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

PT-2025-29367 · Totolink · Totolink T6

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 B20211015 Description: A critical vulnerability exists in the HTTP POST Request Handler component of the affected software. The vulnerability is located in the setTracerouteCfg function within the...

PT-2025-29349 · Tenda · Tenda Fh451

Name of the Vulnerable Software and Affected Versions: Tenda FH451 version 1.0.0.9 Description: A critical vulnerability exists in Tenda FH451. The manipulation of the page argument in the frmL7ProtForm function within the HTTP POST Request Handler, located at the /goform/L7Prot endpoint, leads t...

PT-2025-29314 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the HTTP POST Request Handler component of the affected product. The fromSafeUrlFilter function within the /goform/fromSafeUrlFilter file is susceptible to a buffer...

PT-2025-29309 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the Tenda FH1201. The fromRouteStatic function within the HTTP POST Request Handler, located in the file /goform/fromRouteStatic, is susceptible to a buffer overflo...

PT-2025-29307 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: A critical vulnerability exists in the Tenda FH1201. The vulnerability affects the formWrlsafeset function within the /goform/AdvSetWrlsafeset file of the HTTP POST Request Handler component...

CVE-2025-24334

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...