Tenda Fh451 Firmware
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Tenda Fh451 Firmware.
By the Year
In 2026 there have been 5 vulnerabilities in Tenda Fh451 Firmware with an average score of 8.8 out of ten. Last year, in 2025 Fh451 Firmware had 19 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Fh451 Firmware in 2026 could surpass last years number. Interestingly, the average vulnerability score and the number of vulnerabilities for 2026 and last year was the same.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 5 | 8.80 |
| 2025 | 19 | 8.80 |
| 2024 | 3 | 9.03 |
It may take a day or so for new Fh451 Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Tenda Fh451 Firmware Security Vulnerabilities
Tenda FH451 1.0.0.9 Remote Stack B.O. via WrlclientSet
CVE-2026-4535
8.8 - High
- March 22, 2026
A vulnerability has been found in Tenda FH451 1.0.0.9. This vulnerability affects the function WrlclientSet of the file /goform/WrlclientSet. Such manipulation of the argument GO leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Stack Overflow
Tenda FH451 1.0.0.9 Stack Buffer Overflow in formWrlExtraSet (remote)
CVE-2026-4534
8.8 - High
- March 22, 2026
A flaw has been found in Tenda FH451 1.0.0.9. This affects the function formWrlExtraSet of the file /goform/WrlExtraSet. This manipulation of the argument GO causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used.
Stack Overflow
CVE-2026-3679: Tenda FH451 v1.0.0.9 stack-overflow frmQuickIdx QuickIndex
CVE-2026-3679
8.8 - High
- March 07, 2026
A vulnerability was identified in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex. Such manipulation of the argument mit_linktype/PPPOEPassword leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
Stack Overflow
Tenda FH451 1.0.0.9 stack buffer overflow in AdvSetWan Wanmode
CVE-2026-3678
8.8 - High
- March 07, 2026
A vulnerability was determined in Tenda FH451 1.0.0.9. Affected is the function sub_3C434 of the file /goform/AdvSetWan. This manipulation of the argument wanmode/PPPOEPassword causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.
Stack Overflow
Tenda FH451 1.0.0.9 Buffer Overflow in setcfm Remote
CVE-2026-3677
8.8 - High
- March 07, 2026
A vulnerability was found in Tenda FH451 1.0.0.9. This impacts the function fromSetCfm of the file /goform/setcfm. The manipulation of the argument funcname/funcpara1 results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.
Stack Overflow
Tenda FH451 1.0.0.9 Stack Buffer Overflow in VirtualSer
CVE-2025-7854
8.8 - High
- July 19, 2025
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. Affected is the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9 Stack-Based Buffer Overflow in qossetting (fromqossetting)
CVE-2025-7855
8.8 - High
- July 19, 2025
A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromqossetting of the file /goform/qossetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely.
Buffer Overflow
Tenda FH451 1.0.0.9 stack CVE-2025-7853 buffer overflow in SetIpBind
CVE-2025-7853
8.8 - High
- July 19, 2025
A vulnerability was found in Tenda FH451 1.0.0.9. It has been rated as critical. This issue affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
CVE-2025-7807: Tenda FH451 1.0.0.9 Remote RB-Overflow in SafeUrlFilter
CVE-2025-7807
8.8 - High
- July 18, 2025
A vulnerability, which was classified as critical, has been found in Tenda FH451 1.0.0.9. This issue affects the function fromSafeUrlFilter of the file /goform/SafeUrlFilter. The manipulation of the argument Go/page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 v1.0.0.9 SBO in SafeClientFilter via Go/page
CVE-2025-7806
8.8 - High
- July 18, 2025
A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. This vulnerability affects the function fromSafeClientFilter of the file /goform/SafeClientFilter. The manipulation of the argument Go/page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9 PPTPUserSetting stack overflow via delno
CVE-2025-7805
8.8 - High
- July 18, 2025
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromPptpUserSetting of the file /goform/PPTPUserSetting. The manipulation of the argument delno leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9: Stack Buffer Overflow via Username
CVE-2025-7796
8.8 - High
- July 18, 2025
A vulnerability, which was classified as critical, was found in Tenda FH451 1.0.0.9. This affects the function fromPptpUserAdd of the file /goform/PPTPDClient. The manipulation of the argument Username leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Critical Stack Overflow in Tenda FH451 1.0.0.9 via /goform/P2pListFilter
CVE-2025-7795
8.8 - High
- July 18, 2025
A vulnerability, which was classified as critical, has been found in Tenda FH451 1.0.0.9. Affected by this issue is the function fromP2pListFilter of the file /goform/P2pListFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9: Remote stack buffer overflow in formSafeEmailFilter
CVE-2025-7792
8.8 - High
- July 18, 2025
A vulnerability was found in Tenda FH451 1.0.0.9. It has been rated as critical. This issue affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9 Stack-Based Buffer Overflow via webSiteId
CVE-2025-7793
8.8 - High
- July 18, 2025
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary. The manipulation of the argument webSiteId leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9 Stack Buffer Overflow in fromNatStaticSetting
CVE-2025-7794
8.8 - High
- July 18, 2025
A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Critical Buffer Overflow in Tenda FH451 1.0.0.9 WizardHandle (POST)
CVE-2025-7747
8.8 - High
- July 17, 2025
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromWizardHandle of the file /goform/WizardHandle of the component POST Request Handler. The manipulation of the argument PPW leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Classic Buffer Overflow
Tenda FH451 1.0.0.9 – HTTP POST ReqHandler Stack Buffer Overflow
CVE-2025-7505
8.8 - High
- July 12, 2025
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. Affected is the function frmL7ProtForm of the file /goform/L7Prot of the component HTTP POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0.9 HTTP POST Handler Stack Buffer Overflow (Remote)
CVE-2025-7506
8.8 - High
- July 12, 2025
A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromNatlimit of the file /goform/Natlimit of the component HTTP POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Critical Buffer Overflow in Tenda FH451 <=1.0.0.9 via fromAddressNat POST Request
CVE-2025-7434
8.8 - High
- July 11, 2025
A vulnerability was found in Tenda FH451 up to 1.0.0.9 and classified as critical. Affected by this issue is the function fromAddressNat of the file /goform/addressNat of the component POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Buffer Overflow
Tenda FH451 1.0.0-9 stack-based buffer overflow in webExcptypemanFilter – critical
CVE-2025-5080
8.8 - High
- May 22, 2025
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. Affected is the function webExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Memory Corruption
RCE in Tenda FH451 V1.0.0.9 via SafeEmailFilter
CVE-2025-44176
- May 12, 2025
Tenda FH451 V1.0.0.9 is vulnerable to Remote Code Execution in the formSafeEmailFilter function.
Tenda FH451 V1.0.0.9 Stack Overflow in P2pListFilter
CVE-2025-45513
- May 09, 2025
Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.P2pListFilter.
Stack Overflow in function.frmL7ImForm on Tenda FH451 v1.0.0.9
CVE-2025-45514
- May 07, 2025
Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.frmL7ImForm.
Command Injection in Tenda FH451 v1.0.0.9 formexeCommand (CVE-2024-46048)
CVE-2024-46048
9.8 - Critical
- September 13, 2024
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i
Command Injection
Tenda FH451 v1.0.0.9 Stack Overflow in RouteStatic
CVE-2024-46046
9.8 - Critical
- September 13, 2024
Tenda FH451 v1.0.0.9 has a stack overflow vulnerability located in the RouteStatic function.
Memory Corruption
Stack Overflow in Tenda FH451 v1.0.0.9 fromDhcpListClient
CVE-2024-46047
7.5 - High
- September 13, 2024
Tenda FH451 v1.0.0.9 has a stack overflow vulnerability in the fromDhcpListClient function.
Memory Corruption
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Tenda Fh451 Firmware or by Tenda? Click the Watch button to subscribe.
