CVE-2025-7505 | Tenda FH451 1.0.0.9 HTTP POST Request /goform/L7Prot frmL7ProtForm page stack-based overflow

July 11, 2025 Yanac

A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. Affected is the function frmL7ProtForm of the file /goform/L7Prot of the component HTTP POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2025-7505. It is possible to launch the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More