CVE-2025-7531
BaseFortify
Publication date: 2025-07-13
Last updated on: 2025-07-16
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | fh1202_firmware | 1.2.0.14\(408\) |
| tenda | fh1202 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a critical stack-based buffer overflow in the Tenda FH1202 router firmware version 1.2.0.14(408). It occurs in the function fromPptpUserSetting when processing the 'delno' parameter improperly. An attacker can remotely send crafted input to this parameter, causing a stack overflow that may allow arbitrary code execution or denial of service. [1, 2]
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to remote code execution or denial of service on the affected router. This means an attacker could take control of the device, disrupt its operation, compromise confidentiality, integrity, and availability of the system, potentially affecting your network security and connectivity. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by monitoring requests to the endpoint /goform/PPTPUserSetting, specifically looking for unusual or malformed 'delno' parameter values that could trigger the stack-based buffer overflow. Since the exploit is publicly available, you can use network traffic inspection tools to detect attempts to exploit this vulnerability by filtering HTTP POST requests to /goform/PPTPUserSetting with suspicious 'delno' parameters. However, no specific detection commands or signatures are provided in the available resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected Tenda FH1202 router firmware version 1.2.0.14(408) with an alternative product or firmware version, as no official vendor patch or fix is currently available. Additionally, restricting remote access to the router's management interface, especially the /goform/PPTPUserSetting endpoint, and implementing network-level protections such as firewall rules to block unauthorized access can help reduce the risk of exploitation. [2]