ГлавнаяУязвимости → CVE-2025-11117
8.8высокая

CVE-2025-11117

Описание

A vulnerability was determined in Tenda CH22 1.0.0.1. This vulnerability affects the function formWrlExtraGet of the file /goform/GstDhcpSetSer. This manipulation of the argument dips causes buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Tenda Ch22 firmwareTenda Ch22
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/zhaoyinshan/CVE/issues/2https://vuldb.com/?ctiid.326198https://vuldb.com/?id.326198https://vuldb.com/?submit.662927https://www.tenda.com.cn/