CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/12/23 9:32 p.m.•2 views

CVE-2025-15046 Tenda WH450 HTTP Request PPTPClient stack-based overflow

A vulnerability has been found in Tenda WH450 1.0.0.18. The impacted element is an unknown function of the file /goform/PPTPClient of the component HTTP Request Handler. Such manipulation of the argument netmsk leads to stack-based buffer overflow. It is possible to launch the attack remotely. Th...

10CVSS7AI score0.00159EPSS

NVD•added 2025/12/23 9:15 p.m.•2 views

CVE-2025-15045

A flaw has been found in Tenda WH450 1.0.0.18. The affected element is an unknown function of the file /goform/Natlimit of the component HTTP Request Handler. This manipulation of the argument page causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has...

10CVSS0.00159EPSS

Vulnrichment•added 2025/12/23 9:2 p.m.•1 views

CVE-2025-15045 Tenda WH450 HTTP Request Natlimit stack-based overflow

10CVSS6.9AI score0.00159EPSS

CVE•added 2025/12/23 9:2 p.m.•6 views

CVE-2025-15045

CVE-2025-15045 affects Tenda WH450 1.0.0.18. The vulnerability lies in the HTTP Request Handler’s Natlimit function, where manipulating the page argument triggers a stack-based buffer overflow. The flaw allows remote initiation and, per sources, an exploit has been published and may be used. Seve...

10CVSS6.9AI score0.00159EPSS

Cvelist•added 2025/12/23 9:2 p.m.•23 views

CVE-2025-15045 Tenda WH450 HTTP Request Natlimit stack-based overflow

10CVSS0.00159EPSS

RedhatCVE•added 2025/12/23 2:45 a.m.•4 views

CVE-2025-15007

A security vulnerability has been detected in Tenda WH450 1.0.0.18. Affected by this issue is some unknown functionality of the file /goform/L7Im of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely...

10CVSS7.1AI score0.00295EPSS

Exploits1References1

10CVSS9.7AI score0.00525EPSS

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter Username in the file/goform/PPTPDClient of the component HTTP Request Handler, which could result in a stack...

Exploits1References7

10CVSS9.7AI score0.00159EPSS

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter netmsk in the file/goform/PPTPClient of the component HTTP Request Handler, which may result in a stack buffer...

10CVSS9.7AI score0.00159EPSS

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page in the file/goform/Natlimit of the component HTTP Request Handler, which could result in a stack buffer...

9.8CVSS7.8AI score0.00112EPSS

Tenda WH450 命令注入漏洞

Tenda WH450 is a wireless access point from Tenda, China. A command injection vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from a misuse of the parameter ipaddress in the file/goform/CheckTools of the component HTTP Request Handler, which could lead to command injection...

RedhatCVE•added 2025/12/22 8:17 a.m.•3 views

CVE-2025-14994

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

9CVSS8.9AI score0.00222EPSS

Exploits1References1

OSV•added 2025/12/22 3:15 a.m.•0 views

CVE-2025-15008

A vulnerability was detected in Tenda WH450 1.0.0.18. This affects an unknown part of the file /goform/L7Port of the component HTTP Request Handler. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now publ...

9.8CVSS6.5AI score

Exploits0References6

NVD•added 2025/12/22 2:16 a.m.•2 views

CVE-2025-15007

10CVSS0.00295EPSS

OSV•added 2025/12/22 2:16 a.m.•1 views

CVE-2025-15007

9.3CVSS6.4AI score

Exploits0References6

EUVD•added 2025/12/22 2:2 a.m.•1 views

EUVD-2025-204683

A vulnerability was detected in Tenda WH450 1.0.0.18. This affects an unknown part of the file /goform/L7Port of the component HTTP Request Handler. Performing manipulation of the argument page results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now public...

7.5CVSS7AI score0.00075EPSS

Exploits1References7

CVE•added 2025/12/22 2:2 a.m.•6 views

CVE-2025-15008

CVE-2025-15008 affects Tenda WH450 1.0.0.18. The vulnerability is a stack-based overflow in the HTTP Request Handler’s /goform/L7Port file, triggered by manipulating the page argument. This can be exploited remotely and, per sources, the exploit is public. Multiple connected feeds confirm the aff...

9.8CVSS8.2AI score0.00075EPSS

ATTACKERKB•added 2025/12/22 2:2 a.m.•3 views

CVE-2025-15008

9.8CVSS6.3AI score0.00075EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2025/12/22 1:32 a.m.•1 views

CVE-2025-15007 Tenda WH450 HTTP Request L7Im stack-based overflow

10CVSS9.7AI score0.00295EPSS

CVE•added 2025/12/22 1:32 a.m.•13 views

CVE-2025-15007

CVE-2025-15007 affects Tenda WH450 1.0.0.18. The vulnerability lies in the HTTP Request Handler’s /goform/L7Im, where manipulating the page argument triggers a stack-based buffer overflow. It is exploitable remotely and has publicly available PoC/exploit code. Publicly disclosed details indicate ...

10CVSS7AI score0.00295EPSS