CVE-2026-7035

· NIST NVD ↗

A vulnerability was determined in Tenda FH1202 1.2.0.14. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. Executing a manipulation of the argument Go can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

HIGH
CVSS severity
8.8
CVSS base score
2026-04-26
Published

CWE codes

CWE-119CWE-121

Affected products

tenda:fh1202_firmwaretenda:fh1202

Sources