CVE Details
Basic Information
| Title | Tenda FH1201 HTTP POST Request fromRouteStatic buffer overflow |
|---|---|
| Type | cve |
| Published | 2025-07-12T07:02:07.562Z |
| Modified | 2025-07-12T07:02:07.562Z |
Product Information
| Vendor | Tenda |
|---|---|
| Product | FH1201 |
| Version | 1.2.0.14 |
CVSS Information
| Base Score | 8.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A critical buffer overflow vulnerability was discovered in the Tenda FH1201 router, specifically in the fromRouteStatic function. This vulnerability can be exploited remotely via HTTP POST requests, potentially allowing attackers to execute arbitrary code. The exploit details are publicly available, making it a significant security risk. |
|---|---|
| AI Severity | High |
| AI Vendor | Tenda |
| AI Product | FH1201 |
| AI Version | 1.2.0.14 |
Affected Products
- Tenda FH1201 1.2.0.14
Additional Information
| CWE List | CWE-120, CWE-119 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as critical was found in Tenda FH1201 1.2.0.14. Affected by this vulnerability is the function fromRouteStatic of the file /goform/fromRouteStatic of the component HTTP POST Request Handler. The manipulation of the argument page leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.