Skip to main content

Fh1202 Firmware CVE-2025-7529

| EUVDEUVD-2025-21256 HIGH
Buffer Overflow (CWE-119)
2025-07-13 cna@vuldb.com
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
EUVD ID Assigned
Mar 16, 2026 - 09:18 euvd
EUVD-2025-21256
Analysis Generated
Mar 16, 2026 - 09:18 vuln.today
PoC Detected
Jul 16, 2025 - 14:56 vuln.today
Public exploit code
CVE Published
Jul 13, 2025 - 12:15 nvd
HIGH 8.8

DescriptionCVE.org

A vulnerability classified as critical was found in Tenda FH1202 1.2.0.14(408). Affected by this vulnerability is the function fromNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

CVE-2025-7529 is a critical stack-based buffer overflow vulnerability in Tenda FH1202 firmware version 1.2.0.14(408) that allows authenticated remote attackers to achieve complete system compromise through manipulation of the 'page' parameter in the /goform/Natlimit endpoint. With a CVSS score of 8.8, public exploit disclosure, and confirmation of active exploitation potential, this vulnerability poses significant real-world risk to deployed Tenda router installations.

Technical ContextAI

The vulnerability exists in the fromNatlimit function within the Tenda FH1202 router's web management interface. This is a stack-based buffer overflow (CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer) caused by insufficient input validation on the 'page' parameter. The affected endpoint /goform/Natlimit processes NAT (Network Address Translation) limit configuration requests. Tenda routers are embedded Linux-based devices running proprietary firmware; the vulnerability likely stems from unsafe C string handling (strcpy, sprintf, or similar) in the CGI handler without proper bounds checking. CPE: cpe:2.3:o:tenda:fh1202_firmware:1.2.0.14\(408\):*:*:*:*:*:*:* (firmware) and cpe:2.3:h:tenda:fh1202:*:*:*:*:*:*:*:* (hardware). The stack overflow allows arbitrary code execution in the context of the web service process, typically running with elevated privileges on embedded devices.

RemediationAI

{'type': 'Patch', 'action': 'Contact Tenda support or check https://www.tenda.com.cn/ for firmware updates beyond 1.2.0.14(408). Apply latest stable firmware release for FH1202.', 'priority': 'CRITICAL - Apply immediately'} {'type': 'Workaround', 'action': "Restrict access to the router's web management interface (typically port 80/443) at the network boundary. Disable WAN-side access to the web interface if possible (check router settings under 'Remote Management' or equivalent). Use a VPN or bastion host for legitimate administrative access.", 'priority': 'IMMEDIATE - Deploy if patching is delayed'} {'type': 'Mitigation', 'action': 'Change default router credentials immediately. Implement network segmentation to limit access to administrative interfaces. Monitor for suspicious requests to /goform/Natlimit endpoint in access logs.', 'priority': 'HIGH - Implement in parallel with other controls'} {'type': 'Detection', 'action': "Monitor HTTP POST requests to /goform/Natlimit with unusually long 'page' parameter values (>512 bytes). Log and alert on such requests. Review router access logs for unauthorized administrative access.", 'priority': 'MEDIUM - Deploy logging rules'}

CVE-2024-30589 CRITICAL POC
9.8 Mar 28

Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability in the entrys parameter of the fromAddressNat fu

CVE-2024-30587 CRITICAL POC
9.8 Mar 28

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo functi

CVE-2024-30584 CRITICAL POC
9.8 Mar 28

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet functio

CVE-2024-30596 CRITICAL POC
9.8 Mar 28

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName functi

CVE-2024-30593 CRITICAL POC
9.8 Mar 28

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceN

CVE-2024-30595 CRITICAL POC
9.8 Mar 28

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the addWifiMacFilter functio

CVE-2023-38939 CRITICAL POC
9.8 Aug 07

Tenda F1202 V1.2.0.9 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the mit_ssid parameter in the f

CVE-2023-38938 CRITICAL POC
9.8 Aug 07

Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow vi

CVE-2023-38932 CRITICAL POC
9.8 Aug 07

Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow vi

CVE-2023-37723 CRITICAL POC
9.8 Jul 14

Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter

CVE-2023-37722 CRITICAL POC
9.8 Jul 14

Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter

CVE-2023-37721 CRITICAL POC
9.8 Jul 14

Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter

Share

CVE-2025-7529 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy