Security Advisory

CVE-2025-14994

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-21 07:32:08

Last updated 2025-12-22 16:36:21

Assigner VulDB

State PUBLISHED

Description

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14(408)/1.2.0.8(8155). This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used.

← Browse all CVEs View on cve.org ↗