CVE-2026-7054

A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be executed remotely. The...

CVE-2026-7054

A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be executed remotely. The...

CVE-2026-7054

A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be executed remotely. The...

EUVD-2026-25724

A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be executed remotely. The...

CVE-2026-3729

A vulnerability was identified in Tenda F453 1.0.0.3/3.As. Impacted is the function fromPptpUserAdd of the file /goform/PPTPDClient. Such manipulation of the argument username/opttype leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and...

EUVD-2025-204956

A vulnerability was found in Tenda WH450 1.0.0.18. This affects an unknown function of the file /goform/PPTPDClient of the component HTTP Request Handler. Performing manipulation of the argument Username results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

CVE-2025-15047

A vulnerability was found in Tenda WH450 1.0.0.18. This affects an unknown function of the file /goform/PPTPDClient of the component HTTP Request Handler. Performing a manipulation of the argument Username results in stack-based buffer overflow. The attack can be initiated remotely. The exploit h...

CVE-2025-15047

The CVE-2025-15047 affects Tenda WH450 1.0.0.18, specifically the HTTP Request Handler’s /goform/PPTPDClient function. Manipulating the Username argument can trigger a stack-based buffer overflow, with remote exploitation and a public PoC. Multiple sources (CVE listings, Red Hat, ENISA, NVD, CVE ...

PT-2025-52852

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A stack-based buffer overflow exists in the HTTP Request Handler component of the Tenda WH450. The issue is triggered by manipulating the Username argument in the '/goform/PPTPDClient' file. The attack...

Tenda FH451 formPPTPDClient function buffer overflow vulnerability

Tenda FH451 is a single-band 2.4GHz SOHO wireless router launched by China Tenda, with a maximum transmission rate of 450Mbps, belonging to the series of products of the King of Wall Penetration. The Tenda FH451 suffers from a buffer overflow vulnerability, which originates from the parameter...

CVE-2025-7796

A vulnerability, which was classified as critical, was found in Tenda FH451 1.0.0.9. This affects the function fromPptpUserAdd of the file /goform/PPTPDClient. The manipulation of the argument Username leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The explo...

Tenda FH451 安全漏洞

Tenda FH451 is a single-band 2.4GHz SOHO wireless router launched by China Tenda, with a maximum transmission rate of 450Mbps, belonging to the series of products of the King of Wall Penetration. The Tenda FH451 suffers from a buffer overflow vulnerability, which originates from the parameter...