ГлавнаяУязвимости → CVE-2025-11356
8.8высокая

CVE-2025-11356

Описание

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and could be used.

Затрагиваемое ПО
Tenda Ac23 firmwareTenda Ac23
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/cymiao1978/cve/blob/main/12.mdhttps://vuldb.com/?ctiid.327241https://vuldb.com/?id.327241https://vuldb.com/?submit.664923https://www.tenda.com.cn/