Tenda

Fh1201 Firmware

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9

CVE-2025-7468

Exploit
  • EPSS 0.25%
  • Veröffentlicht 12.07.2025 09:15:25
  • Zuletzt bearbeitet 15.07.2025 15:42:26

A vulnerability has been found in Tenda FH1201 1.2.0.14 and classified as critical. This vulnerability affects the function fromSafeUrlFilter of the file /goform/fromSafeUrlFilter of the component HTTP POST Request Handler. The manipulation of the ar...

9

CVE-2025-7465

Exploit
  • EPSS 0.25%
  • Veröffentlicht 12.07.2025 07:15:23
  • Zuletzt bearbeitet 15.07.2025 18:09:06

A vulnerability classified as critical was found in Tenda FH1201 1.2.0.14. Affected by this vulnerability is the function fromRouteStatic of the file /goform/fromRouteStatic of the component HTTP POST Request Handler. The manipulation of the argument...

9

CVE-2025-7463

Exploit
  • EPSS 0.25%
  • Veröffentlicht 12.07.2025 06:02:06
  • Zuletzt bearbeitet 15.07.2025 18:09:19

A vulnerability was found in Tenda FH1201 1.2.0.14. It has been declared as critical. This vulnerability affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP POST Request Handler. The manipulation of the argu...

6.5

CVE-2024-12002

Exploit
  • EPSS 0.12%
  • Veröffentlicht 30.11.2024 13:15:04
  • Zuletzt bearbeitet 10.12.2024 23:21:19

A vulnerability classified as problematic was found in Tenda FH451, FH1201, FH1202 and FH1206 up to 20241129. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV. The manipulation of the argument Content-Length le...

8

CVE-2024-44859

Exploit
  • EPSS 0.17%
  • Veröffentlicht 04.09.2024 16:15:07
  • Zuletzt bearbeitet 09.04.2025 18:46:56

Tenda FH1201 v1.2.0.14 has a stack buffer overflow vulnerability in `formWrlExtraGet`.

7.5

CVE-2024-42946

Exploit
  • EPSS 0.08%
  • Veröffentlicht 15.08.2024 17:15:19
  • Zuletzt bearbeitet 16.08.2024 17:35:08

Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromVirtualSer function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

9.8

CVE-2024-42947

Exploit
  • EPSS 0.39%
  • Veröffentlicht 15.08.2024 17:15:19
  • Zuletzt bearbeitet 13.03.2025 14:15:31

An issue in the handler function in /goform/telnet of Tenda FH1201 v1.2.0.14 (408) allows attackers to execute arbitrary commands via a crafted HTTP request.

7.5

CVE-2024-42948

Exploit
  • EPSS 3.82%
  • Veröffentlicht 15.08.2024 17:15:19
  • Zuletzt bearbeitet 03.09.2024 18:35:12

Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the delno parameter in the fromPptpUserSetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

7.5

CVE-2024-42950

Exploit
  • EPSS 0.15%
  • Veröffentlicht 15.08.2024 17:15:19
  • Zuletzt bearbeitet 21.08.2024 17:35:04

Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the Go parameter in the fromSafeClientFilter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

7.5

CVE-2024-42951

Exploit
  • EPSS 0.15%
  • Veröffentlicht 15.08.2024 17:15:19
  • Zuletzt bearbeitet 16.08.2024 18:35:14

Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the mit_pptpusrpw parameter in the fromWizardHandle function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.