CVE-2025-15162

A vulnerability was determined in Tenda WH450 1.0.0.18. Affected by this vulnerability is an unknown functionality of the file /goform/RouteStatic. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been publicl...

high 7.2 CVSS 3.1

Published: Dec 29, 2025

Modified: Feb 24, 2026

Vendor: Tenda

Versions: 1.0.0.18

Description

A vulnerability was determined in Tenda WH450 1.0.0.18. Affected by this vulnerability is an unknown functionality of the file /goform/RouteStatic. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized.

References

Related CVEs

CVSS Breakdown

Version	3.1
Score	7.2 / 10
Severity	high

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Weakness (CWE)

CWE-119

Affected Product

Vendor	Tenda
Product	Wh450 Firmware
Versions	1.0.0.18