Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
4DescriptionCVE.org
A vulnerability, which was classified as critical, was found in Tenda FH1202 1.2.0.14(408). This affects the function fromPptpUserSetting of the file /goform/PPTPUserSetting. The manipulation of the argument delno leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
AnalysisAI
CVE-2025-7531 is a critical stack-based buffer overflow vulnerability in Tenda FH1202 firmware version 1.2.0.14(408) affecting the PPTP user settings function. An authenticated remote attacker can exploit improper input validation on the 'delno' parameter to achieve code execution with full system compromise (confidentiality, integrity, and availability). The vulnerability has public exploit code available and represents active exploitation risk.
Technical ContextAI
This vulnerability exists in the fromPptpUserSetting function within the /goform/PPTPUserSetting endpoint of Tenda FH1202 wireless router firmware. The root cause is CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), specifically a stack-based buffer overflow triggered by insufficient bounds checking on the 'delno' parameter. PPTP (Point-to-Point Tunneling Protocol) is a VPN protocol commonly configured through web management interfaces in residential routers. The buffer overflow occurs when user-supplied input to this function exceeds allocated stack memory, allowing an attacker to overwrite the return address and achieve arbitrary code execution. The affected CPE is likely: cpe:2.4.2:tenda:fh1202:1.2.0.14\(408\):*:*:*:*:*:*:* or similar firmware version designation.
RemediationAI
{'type': 'Patch', 'action': "Firmware update - Contact Tenda support or check fccid.io and Tenda's official support portal for patched firmware versions newer than 1.2.0.14(408). Verify checksum/signature before deployment.", 'priority': 'CRITICAL - Apply immediately if available'} {'type': 'Workaround (if patch unavailable)', 'action': 'Disable PPTP functionality entirely if not required, or restrict access to the /goform/PPTPUserSetting endpoint via firewall/ACL rules to trusted IPs only. Implement network segmentation to limit router management access to authenticated users on trusted networks only.', 'priority': 'HIGH - Temporary until patch available'} {'type': 'Network Mitigation', 'action': "Implement rate limiting and IDS/IPS signatures for /goform/PPTPUserSetting requests with abnormal 'delno' parameter values. Monitor router logs for suspicious PPTP configuration changes.", 'priority': 'MEDIUM - Defense-in-depth'} {'type': 'Access Control', 'action': 'Enforce strong authentication credentials on router management interface. Disable default credentials. Limit management interface accessibility (disable WAN-side access if possible).', 'priority': 'HIGH'}
More in Fh1202 Firmware
View allTenda FH1202 v1.2.0.14(408) firmware has a stack overflow vulnerability in the entrys parameter of the fromAddressNat fu
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo functi
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the formWifiBasicSet functio
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the formSetDeviceName functi
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceN
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the addWifiMacFilter functio
Tenda F1202 V1.2.0.9 and FH1202 V1.2.0.9 were discovered to contain a stack overflow via the mit_ssid parameter in the f
Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow vi
Tenda F1202 V1.2.0.9, PA202 V1.1.2.5, PW201A V1.1.2.5 and FH1202 V1.2.0.9 were discovered to contain a stack overflow vi
Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter
Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter
Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack overflow in the page parameter
Same weakness CWE-119 – Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-21260