CVE-2026-7034

A vulnerability was found in Tenda FH1202 1.2.0.14408. Affected by this issue is the function WrlExtraSet of the file /goform/WrlExtraSet of the component httpd. Performing a manipulation of the argument Go results in stack-based buffer overflow. The attack may be initiated remotely. The exploit...

CVE-2026-7035

A vulnerability was determined in Tenda FH1202 1.2.0.14. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. Executing a manipulation of the argument Go can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has be...

CVE-2026-7034

CVE-2026-7034 affects Tenda FH1202 (firmware 1.2.0.14(408)) in the httpd component, specifically the WrlExtraSet function in /goform/WrlExtraSet. The issue is a stack-based buffer overflow triggered by manipulating the Go argument, leading to potential remote control of affected devices. An explo...

PT-2026-28754

Name of the Vulnerable Software and Affected Versions Tenda FH1201 version 1.2.0.14408 Description A flaw exists in the Tenda FH1201 that may allow for remote execution of code. The issue is located within the formWrlExtraSet function of the /goform/WrlExtraSet file, part of the Parameter Handler...

CVE-2026-3810

The CVE-2026-3810 entry concerns Tenda FH1202 firmware 1.2.0.14(408). The vulnerability lies in the function fromDhcpListClient in /goform/DhcpListClient, where manipulation of the argument page triggers a stack-based buffer overflow. This enables remote exploitation, with the exploit already dis...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a wireless router produced by the Chinese company Tenda. The version Tenda FH1202 1.2.0.14408 contains a security vulnerability. This vulnerability stems from incorrect handling of the parameter webSiteId in the function formWebTypeLibrary within the file/goform/webtypelibrary...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a wireless router produced by the Chinese company Tenda. The version Tenda FH1202 1.2.0.14408 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters mitssid/mitssidindex in the formWrlsafeset function located in the...

CVE-2025-14995

A vulnerability has been found in Tenda FH1201 1.2.0.14408. Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be...

CVE-2025-14995 Tenda FH1201 SetIpBind sprintf stack-based overflow

A vulnerability has been found in Tenda FH1201 1.2.0.14408. Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be...

CVE-2025-14995

The CVE describes a stack-based buffer overflow in Tenda FH1201 routers (version 1.2.0.14(408)) caused by mis-handling of the page parameter in the sprintf call in /goform/SetIpBind. The issue can be triggered remotely, with public PoC/exploit disclosures and active exploitation reported by multi...

CVE-2025-14994

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

Tenda FH1201 安全漏洞

Tenda FH1201 is a wireless router from Tenda China. A security vulnerability exists in Tenda FH1201 version 1.2.0.14408, which originates from the sprintf function in file /goform/SetIpBind improperly handles the parameter page, which could result in a stack buffer overflow...

PT-2025-52563

Name of the Vulnerable Software and Affected Versions Tenda FH1201 version 1.2.0.14408 Description A stack-based buffer overflow exists in the sprintf function within the /goform/SetIpBind file of the Tenda FH1201 router. Manipulation of the page argument can trigger this issue, allowing for remo...

CVE-2025-7527

A vulnerability was found in Tenda FH1202 1.2.0.14408. It has been rated as critical. This issue affects the function fromAdvSetWan of the file /goform/AdvSetWan. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromwebExcptypemanFilter parameter page to correctly validate the length of the input data in the file...

Tenda FH1201 安全漏洞

The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from a failure to properly validate the length of input data in the parameter modino/username in the file /goform/PPTPDClient, which can be...

Tenda FH1201 安全漏洞

The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 version 1.2.0.14408 suffers from a buffer overflow vulnerability that originates from the parameter page in the file /goform/SafeEmailFilter that fails to correctly validate the length of the input data, which can be exploit...

Tenda FH1201 安全漏洞

The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the parameter dips in the file /goform/GstDhcpSetSer that fails to correctly validate the length of the input data, which can be exploit...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromAdvSetWan parameter PPPOEPassword to correctly validate the length of the input data in file...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the function fromPptpUserSetting parameter delno in the file /goform/PPTPUserSetting failing to correctly validate the length of the inp...