Submit #453974: Tenda FH451/FH1201/FH1202/FH1206 FH451-V1.0.0.9/FH451-V1.0.0.7/FH451-V1.0.0.5/FH1201-V1.2.0.14(408)_EN/FH1201-V1.2.0.8(8155)/FH1202-V1.2.0.14(408)/etc NULL Pointer Dereferenceinfo

TitleTenda FH451/FH1201/FH1202/FH1206 FH451-V1.0.0.9/FH451-V1.0.0.7/FH451-V1.0.0.5/FH1201-V1.2.0.14(408)_EN/FH1201-V1.2.0.8(8155)/FH1202-V1.2.0.14(408)/etc NULL Pointer Dereference
DescriptionA vulnerability classified as problematic has been found in Tenda FH451, FH1201, FH1202 and FH1206 up to 20241129. Affected is the function websReadEvent of the file /goform/GetIPTV. The manipulation of the argument Content-Length leads to null pointer dereference. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
Source⚠️ https://github.com/Kalvin2077/tenda-fh-cve
User
 Kalv1n2077 (UID 78455)
Submission11/29/2024 10:17 (2 years ago)
Moderation11/29/2024 16:49 (7 hours later)
StatusAccepted
VulDB entry286417 [Tenda FH451/FH1201/FH1202/FH1206 up to 20241129 /goform/GetIPTV websReadEvent Content-Length null pointer dereference]
Points18

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!