Tenda · Tenda Fh1202 · CVE-2026-3808
**Name of the Vulnerable Software and Affected Versions**
Tenda FH1202 version 1.2.0.14(408)
**Description**
A stack-based buffer overflow can be triggered by manipulating the `webSiteId` argument within the `formWebTypeLibrary` function of the `/goform/webtypelibrary` file. This issue may be exploited remotely. The exploit is publicly available.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.