Tenda F1202 vulnerabilities
9 known vulnerabilities affecting tenda/f1202.
Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH8LOW1
Vulnerabilities
Page 1 of 1
CVE-2026-9429HIGHCVSS 7.4v1.2.0.20(408)2026-05-25
CVE-2026-9429 [HIGH] CWE-119 CVE-2026-9429: A vulnerability was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the functi
A vulnerability was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function formWrlExtraSet of the file /goform/WrlExtraSet. Performing a manipulation of the argument delno results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made public and could be used.
cvelistv5nvd
CVE-2026-9430HIGHCVSS 7.4v1.2.0.20(408)2026-05-25
CVE-2026-9430 [HIGH] CWE-119 CVE-2026-9430: A vulnerability was determined in Tenda F1202 1.2.0.20(408). Affected by this issue is the function
A vulnerability was determined in Tenda F1202 1.2.0.20(408). Affected by this issue is the function formGstDhcpSetSer of the file /goform/GstDhcpSetSerof. Executing a manipulation of the argument dips can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized.
cvelistv5nvd
CVE-2026-9431HIGHCVSS 7.4v1.2.0.20(408)2026-05-25
CVE-2026-9431 [HIGH] CWE-119 CVE-2026-9431: A vulnerability was identified in Tenda F1202 1.2.0.20(408). This affects the function fromPptpUserA
A vulnerability was identified in Tenda F1202 1.2.0.20(408). This affects the function fromPptpUserAdd of the file /goform/PptpUserAdd. The manipulation of the argument opttype leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be used.
cvelistv5nvd
CVE-2026-9428HIGHCVSS 7.4v1.2.0.20(408)2026-05-25
CVE-2026-9428 [HIGH] CWE-119 CVE-2026-9428: A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromPPTPUserSe
A vulnerability has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromPPTPUserSetting of the file /goform/PPTPUserSetting. Such manipulation of the argument delno leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
cvelistv5nvd
CVE-2025-9806LOWCVSS 0.9v1.2.0.9v1.2.0.14+1 more2025-09-02
CVE-2025-9806 [LOW] CWE-259 CVE-2025-9806: A vulnerability was determined in Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20. Impacted is an unknown func
A vulnerability was determined in Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20. Impacted is an unknown function of the file /etc_ro/shadow of the component Administrative Interface. This manipulation with the input Fireitup causes hard-coded credentials. The attack can only be executed locally. A high degree of complexity is needed for the attack. The exploitab
nvd
CVE-2024-3877HIGHCVSS 8.8v1.2.0.20(408)2024-04-16
CVE-2024-3877 [HIGH] CWE-121 CVE-2024-3877: A vulnerability classified as critical was found in Tenda F1202 1.2.0.20(408). Affected by this vuln
A vulnerability classified as critical was found in Tenda F1202 1.2.0.20(408). Affected by this vulnerability is the function fromqossetting of the file /goform/fromqossetting. The manipulation of the argument qos leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The
nvd
CVE-2024-3875HIGHCVSS 8.8v1.2.0.20(408)2024-04-16
CVE-2024-3875 [HIGH] CWE-121 CVE-2024-3875: A vulnerability was found in Tenda F1202 1.2.0.20(408). It has been rated as critical. This issue af
A vulnerability was found in Tenda F1202 1.2.0.20(408). It has been rated as critical. This issue affects the function fromNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VD
nvd
CVE-2024-3876HIGHCVSS 8.8v1.2.0.20(408)2024-04-16
CVE-2024-3876 [HIGH] CWE-121 CVE-2024-3876: A vulnerability classified as critical has been found in Tenda F1202 1.2.0.20(408). Affected is the
A vulnerability classified as critical has been found in Tenda F1202 1.2.0.20(408). Affected is the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-260910 is th
nvd
CVE-2024-3878HIGHCVSS 8.8v1.2.0.20(408)2024-04-16
CVE-2024-3878 [HIGH] CWE-121 CVE-2024-3878: A vulnerability, which was classified as critical, has been found in Tenda F1202 1.2.0.20(408). Affe
A vulnerability, which was classified as critical, has been found in Tenda F1202 1.2.0.20(408). Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the pu
nvd