Submit #670118: Tenda W12 V3.0.0.6(3948) NULL Pointer Dereferenceinfo

TitleTenda W12 V3.0.0.6(3948) NULL Pointer Dereference
DescriptionA null pointer dereference vulnerability exists in Tenda W12 firmware V3.0.0.6(3948) within the cgiWifiScheduledSet function. Remote attackers can exploit this flaw by sending malformed HTTP requests to cause a denial of service condition.
Source⚠️ https://github.com/z472421519/BinaryAudit/blob/main/PoC/NPD/Tenda_W12/cgiWifiScheduledSet/cgiWifiScheduledSet.md
User
 z472421519 (UID 91218)
Submission10/06/2025 22:24 (8 months ago)
Moderation10/09/2025 13:14 (3 days later)
StatusAccepted
VulDB entry327709 [Tenda W12 3.0.0.6(3948) HTTP Request /goform/modules wifiScheduledSet null pointer dereference]
Points16

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!