{"id":59472,"date":"2025-07-18T16:52:21","date_gmt":"2025-07-18T16:52:21","guid":{"rendered":""},"modified":"2025-09-04T06:30:27","modified_gmt":"2025-09-04T12:30:27","slug":"cve-2025-7527-critical-tenda-fh1202-vulnerability-leading-to-system-compromise","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-7527-critical-tenda-fh1202-vulnerability-leading-to-system-compromise\/","title":{"rendered":"CVE-2025-7527: Critical Tenda FH1202 Vulnerability Leading to System Compromise<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

A critical security vulnerability with a CVSS severity score of 8.8 has been identified in the Tenda FH1202 1.2.0.14(408). This vulnerability, identified as CVE-2025-7527, affects the function fromAdvSetWan in \/goform\/AdvSetWan. The impact of this vulnerability is significant, potentially leading to system<\/a> compromise or data leakage. It is worth noting that this vulnerability can be exploited remotely<\/a>, and the exploit has already been disclosed publicly, leading to an increased risk of potential attacks.
\nThis vulnerability is particularly significant due to the potential severity<\/a> of its impacts, including the possibility of complete system compromise. This means that an attacker could potentially gain control of an affected system<\/a>, which could allow for further exploitation, data theft, or even system damage.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-7527
\nSeverity: Critical (8.8 CVSS Score)
\nAttack Vector: Remote
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: System Compromise<\/a>, Data Leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n