CVE Details
Basic Information
| Title | Tenda FH1202 GstDhcpSetSer fromGstDhcpSetSer stack-based overflow |
|---|---|
| Type | cve |
| Published | 2025-07-13T11:32:06.765Z |
| Modified | 2025-07-13T11:32:06.765Z |
Product Information
| Vendor | Tenda |
|---|---|
| Product | FH1202 |
| Version | 1.2.0.14(408) |
CVSS Information
| Base Score | 8.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A critical stack-based buffer overflow vulnerability in Tenda FH1202 routers allows remote attackers to exploit the fromGstDhcpSetSer function, potentially leading to system compromise. This issue is highly severe and has public exploit code available. |
|---|---|
| AI Severity | Critical |
| AI Vendor | Tenda |
| AI Product | FH1202 |
| AI Version | 1.2.0.14(408) |
Affected Products
- Tenda FH1202 1.2.0.14(408)
Additional Information
| CWE List | CWE-121, CWE-119 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as critical has been found in Tenda FH1202 1.2.0.14(408). Affected is the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer. The manipulation of the argument dips leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.