VYPR

F1200 Firmware

by Tenda

CVEs (2)

  • CVE-2017-9138HigMay 21, 2017
    risk 0.52cvss 8.0epss 0.01

    There is a debug-interface vulnerability on some Tenda routers (FH1202/F1202/F1200: versions before 1.2.0.20). After connecting locally to a router in a wired or wireless manner, one can bypass intended access restrictions by sending shell commands directly and reading their…

  • CVE-2017-9139LowMay 21, 2017
    risk 0.23cvss 3.5epss 0.00

    There is a stack-based buffer overflow on some Tenda routers (FH1202/F1202/F1200: versions before 1.2.0.20). Crafted POST requests to an unspecified URL result in DoS, interrupting the HTTP service (used to login to the web UI of a router) for 1 to 2 seconds.