CVE-2025-15177

HIGH

Tenda WH450 1.0.0.18 - Stack-based Buffer Overflow via SetIpBind HTTP Request Handler

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-15177. PoCs published by yt2w.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2025-15177, a stack-based buffer overflow in Tenda WH450 V1.0.0.18. The exploit targets the `/goform/SetIpBind` endpoint, allowing for DoS and potential RCE via authenticated HTTP requests.

Description

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Exploits (1)

nomisec WORKING POC

by yt2w · poc

https://github.com/yt2w/CVE-2025-15177

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2025-15177, a stack-based buffer overflow in Tenda WH450 V1.0.0.18. The exploit targets the `/goform/SetIpBind` endpoint, allowing for DoS and potential RCE via authenticated HTTP requests.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Tenda WH450 V1.0.0.18

Auth required

Prerequisites: Network access to the target device · Valid credentials (or default credentials) for authentication

MITRE ATT&CK

T1210 - Exploitation of Remote Services T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry technical-description

https://vuldb.com/?id.338562

Permissions Required, VDB Entry signature permissions-required

https://vuldb.com/?ctiid.338562

Third Party Advisory, VDB Entry third-party-advisory

https://vuldb.com/?submit.721216

Exploit, Third Party Advisory exploit

https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/SetIpBind/SetIpBind.md

Exploit, Third Party Advisory exploit

https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/SetIpBind/SetIpBind.md#reproduce

Product product

https://www.tenda.com.cn/

Scores

CVSS v3 7.2

EPSS 0.0068

EPSS Percentile 47.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-119 CWE-121

Status published

Products (1)

tenda/wh450_firmware 1.0.0.18

Published Dec 29, 2025

Tracked Since Feb 18, 2026