Fh1202 Firmware

fh1202_firmware

Vendor: Tenda • 63 CVEs

CVEs (63)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-30593 1Tenda 1Fh1202 Firmware Mar 13, 2025 Mar 28, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function.
CVE-2024-30595 1Tenda 1Fh1202 Firmware Mar 13, 2025 Mar 28, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the addWifiMacFilter function.
CVE-2024-2987 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability classified as critical has been found in Tenda FH1202 1.2.0.14(408). Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac leads to s...Show more A vulnerability classified as critical has been found in Tenda FH1202 1.2.0.14(408). Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258156. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2986 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been rated as critical. This issue affects the function formSetSpeedWan of the file /goform/SetSpeedWan. The manipulation of the argument speed_dir leads to...Show more A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been rated as critical. This issue affects the function formSetSpeedWan of the file /goform/SetSpeedWan. The manipulation of the argument speed_dir leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-258155. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2985 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPass...Show more A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been declared as critical. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-258154 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2984 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been classified as critical. This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-base...Show more A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been classified as critical. This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-258153 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2983 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability was found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected by this issue is the function formSetClientState of the file /goform/SetClientState. The manipulation of the argument deviceId/...Show more A vulnerability was found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected by this issue is the function formSetClientState of the file /goform/SetClientState. The manipulation of the argument deviceId/limitSpeed/limitSpeedUp leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258152. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2982 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 5.2 MEDIUM· v2 A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected by this vulnerability is the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument ma...Show more A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected by this vulnerability is the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to command injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-258151. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2981 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability, which was classified as critical, was found in Tenda FH1202 1.2.0.14(408). Affected is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set. The manipulation of the argument...Show more A vulnerability, which was classified as critical, was found in Tenda FH1202 1.2.0.14(408). Affected is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set. The manipulation of the argument ssid leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-258150 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-2980 1Tenda 1Fh1202 Firmware Jan 14, 2025 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability, which was classified as critical, has been found in Tenda FH1202 1.2.0.14(408). This issue affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput l...Show more A vulnerability, which was classified as critical, has been found in Tenda FH1202 1.2.0.14(408). This issue affects the function formexeCommand of the file /goform/execCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-258149 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2023-38939 1Tenda 2F1202 Firmware Fh1202 Firmware Nov 21, 2024 Aug 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.2.0.9 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the mit_ssid parameter in the formWrlsafeset function.
CVE-2023-38938 1Tenda 4F1202 Firmware Fh1202 FirmwarePa202 Firmware+1 more Nov 21, 2024 Aug 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter at /L7Im.
CVE-2023-38932 1Tenda 4F1202 Firmware Fh1202 FirmwarePa202 Firmware+1 more Nov 21, 2024 Aug 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the page parameter in the SafeEmailFilter function.
CVE-2023-37723 1Tenda 54g300 Firmware F1202 FirmwareFh1202 Firmware+2 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromqossetting.
CVE-2023-37722 1Tenda 34g300 Firmware F1202 FirmwareFh1202 Firmware Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromSafeUrlFilter.
CVE-2023-37721 1Tenda 54g300 Firmware F1202 FirmwareFh1202 Firmware+2 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromSafeMacFilter.
CVE-2023-37719 1Tenda 4F1202 Firmware Fh1202 FirmwarePa202 Firmware+1 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromP2pListFilter.
CVE-2023-37718 1Tenda 34g300 Firmware F1202 FirmwareFh1202 Firmware Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter in the function fromSafeClientFilter.
CVE-2023-37717 1Tenda 7Ac10 Firmware Ac1206 FirmwareAc5 Firmware+4 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromDhcpListClient.
CVE-2023-37716 1Tenda 7Ac10 Firmware Ac1206 FirmwareAc5 Firmware+4 more Nov 21, 2024 Jul 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda F1202 V1.0BR_V1.2.0.20(408) and FH1202_V1.2.0.19_EN, AC10 V1.0, AC1206 V1.0, AC7 V1.0, AC5 V1.0, and AC9 V3.0 were discovered to contain a stack overflow in the page parameter in the function fromNatStaticSetting.

Previous 1 234 Next