Tenda FH1202 Web Management Interface Improper Access Control Vulnerability

Vulnerability

A critical vulnerability has been identified in the Tenda FH1202 router, specifically in version 1.2.0.14(408). The issue arises within the Web Management Interface, particularly in the file '/goform/VirSerDMZ'. This vulnerability involves improper access controls, allowing unauthorized users to manipulate certain functionalities. The flaw can be exploited remotely without any authentication requirements, potentially leading to unauthorized actions or changes on the device.

Impact

Exploitation of this vulnerability could result in unauthorized access to the '/goform/VirSerDMZ' interface, allowing attackers to manipulate settings or functionalities without proper authorization, thereby compromising the integrity of the device's configuration.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

9.1

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda FH1202 Web Management Interface Improper Access Control Vulnerability

Vulnerability

Impact

Affected Products

Tenda FH1202

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating