CVE-2025-15047

Tenda WH450 HTTP Request PPTPDClient stack-based overflow

CVSS 9.3 CRITICALEPSS 1.1%CWE-119 CWE-121

Vexday Risk Score

48Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS 9.3EPSS 1.1%KEV nãoPoC públicaNuclei —Metasploit —Patch —

Lifecycle

23 Dec 2025Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

A vulnerability was found in Tenda WH450 1.0.0.18. This affects an unknown function of the file /goform/PPTPDClient of the component HTTP Request Handler. Performing a manipulation of the argument Username results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made public and could be used.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Affected products

Tenda · WH450

public PoCs found — 2

cve_referencegithub.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/PPTPDClient/PPTPDClient.mdunverified cve_referencegithub.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/PPTPDClient/PPTPDClient.md#reproduceunverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/PPTPDClient/PPTPDClient.md https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/PPTPDClient/PPTPDClient.md#reproduce https://vuldb.com/?ctiid.337852 https://vuldb.com/?id.337852 https://vuldb.com/?submit.720884 https://www.tenda.com.cn/