Tenda FH1202 Web Management Interface Improper Access Control Vulnerability

Vulnerability

A critical vulnerability has been identified in the Tenda FH1202 router, specifically in version 1.2.0.14(408). The issue arises within the Web Management Interface, particularly in the '/goform/SysToolChangePwd' file, where improper access controls allow for unauthorized manipulation. This vulnerability can be exploited remotely.

Impact

Exploitation of this vulnerability could lead to unauthorized access or manipulation of system settings through the web management interface.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

8.4

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

8.4

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda FH1202 Web Management Interface Improper Access Control Vulnerability

Vulnerability

Impact

Affected Products

Tenda FH1202

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating