CNNVD-202507-2527 Information

CNNVD ID

CNNVD-202507-2527

Related CVE

CVE-2025-7855

• CNNVD Published: 2025-07-19

Description (Chinese)

Tenda FH451是中国腾达（Tenda）公司的一款路由器。 Tenda FH451 1.0.0.9版本存在安全漏洞，该漏洞源于文件/goform/qossetting中fromqossetting函数对参数page处理不当导致栈缓冲区溢出。

Description (English)

Tenda FH451 is a router for Tenda China. There is a security loophole in version FH451 1.0.0.9 of Tenda, which arises from the mishandling of parametric page by the fromqosetting function in file/goform/qossetting, resulting in the spilling out of the silo buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-07-19

Last Modified

2026-02-24

References

https://vuldb.com/?submit.616367 https://www.tenda.com.cn/ https://github.com/panda666-888/vuls/blob/main/tenda/fh451/fromqossetting.md#poc https://vuldb.com/?ctiid.316945 https://vuldb.com/?id.316945 https://access.redhat.com/security/cve/cve-2025-7855