ГлавнаяУязвимости → CVE-2025-11325
8.8высокая

CVE-2025-11325

Описание

A security flaw has been discovered in Tenda AC18 15.03.05.19(6318). Affected by this issue is some unknown functionality of the file /goform/fast_setting_pppoe_set. Performing a manipulation of the argument Username results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.

Затрагиваемое ПО
Tenda Ac18 firmwareTenda Ac18
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/noahze01/IoT-vulnerable/blob/main/Tenda/AC18/fast_setting_pppoe_set.mdhttps://vuldb.com/?ctiid.327208https://vuldb.com/?id.327208https://vuldb.com/?submit.664527https://www.tenda.com.cn/