Tenda Fh1201_firmware
25 CVEs affecting Tenda Fh1201_firmware. Latest disclosed: 2026-03-29. Critical: 1, High: 23.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-42947 | Critical | 9.8 | 2024-08-15 | An issue in the handler function in /goform/telnet of Tenda FH1201 v1.2.0.14 (408) allows attackers to execute arbitrary commands via a crafted HTTP request. |
CVE-2026-5046 | High | 8.8 | 2026-03-29 | A flaw has been found in Tenda FH1201 1.2.0.14(408). Affected is the function formWrlExtraSet of the file /goform/WrlExtraSet of the component Parameter Handle… |
CVE-2026-5045 | High | 8.8 | 2026-03-29 | A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the function WrlclientSet of the file /goform/WrlclientSet of the component Parameter… |
CVE-2025-14995 | High | 8.8 | 2025-12-21 | A vulnerability has been found in Tenda FH1201 1.2.0.14(408). Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument… |
CVE-2025-14994 | High | 8.8 | 2025-12-21 | A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14(408)/1.2.0.8(8155). This impacts the function strcat of the file /goform/webtypelibrary of the compon… |
CVE-2025-7551 | High | 8.8 | 2025-07-14 | A vulnerability was found in Tenda FH1201 1.2.0.14(408). It has been declared as critical. Affected by this vulnerability is the function fromPptpUserAdd of th… |
CVE-2025-7550 | High | 8.8 | 2025-07-13 | A vulnerability was found in Tenda FH1201 1.2.0.14(408). It has been classified as critical. Affected is the function fromGstDhcpSetSer of the file /goform/Gst… |
CVE-2025-7549 | High | 8.8 | 2025-07-13 | A vulnerability was found in Tenda FH1201 1.2.0.14(408) and classified as critical. This issue affects the function frmL7ProtForm of the file /goform/L7Prot. T… |
CVE-2025-7548 | High | 8.8 | 2025-07-13 | A vulnerability has been found in Tenda FH1201 1.2.0.14(408) and classified as critical. This vulnerability affects the function formSafeEmailFilter of the fil… |
CVE-2025-7468 | High | 8.8 | 2025-07-12 | A vulnerability has been found in Tenda FH1201 1.2.0.14 and classified as critical. This vulnerability affects the function fromSafeUrlFilter of the file /gofo… |
CVE-2025-7465 | High | 8.8 | 2025-07-12 | A vulnerability classified as critical was found in Tenda FH1201 1.2.0.14. Affected by this vulnerability is the function fromRouteStatic of the file /goform/f… |
CVE-2025-7463 | High | 8.8 | 2025-07-12 | A vulnerability was found in Tenda FH1201 1.2.0.14. It has been declared as critical. This vulnerability affects the function formWrlsafeset of the file /gofor… |
CVE-2025-6110 | High | 8.8 | 2025-06-16 | A vulnerability classified as critical has been found in Tenda FH1201 1.2.0.14(408). This affects an unknown part of the file /goform/SafeMacFilter. The manipu… |
CVE-2024-44859 | High | 8.0 | 2024-09-04 | Tenda FH1201 v1.2.0.14 has a stack buffer overflow vulnerability in `formWrlExtraGet`. |
CVE-2024-42955 | High | 7.5 | 2024-08-15 | Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromSafeClientFilter function. This vulnerability allows… |
CVE-2024-42952 | High | 7.5 | 2024-08-15 | Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromqossetting function. This vulnerability allows attack… |
CVE-2024-42951 | High | 7.5 | 2024-08-15 | Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the mit_pptpusrpw parameter in the fromWizardHandle function. This vulnerability al… |
CVE-2024-42950 | High | 7.5 | 2024-08-15 | Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the Go parameter in the fromSafeClientFilter function. This vulnerability allows at… |
CVE-2024-42948 | High | 7.5 | 2024-08-15 | Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the delno parameter in the fromPptpUserSetting function. This vulnerability allows… |
CVE-2024-42946 | High | 7.5 | 2024-08-15 | Tenda FH1201 v1.2.0.14 (408) was discovered to contain a stack overflow via the page parameter in the fromVirtualSer function. This vulnerability allows attack… |