ГлавнаяУязвимости → CVE-2025-12235
8высокая

CVE-2025-12235

Описание

A vulnerability was found in Tenda CH22 1.0.0.1. This vulnerability affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page results in buffer overflow. The attack must originate from the local network. The exploit has been made public and could be used.

Затрагиваемое ПО
Tenda Ch22 firmwareTenda Ch22
CVSS
Балл8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/QIU-DIE/CVE/issues/16https://vuldb.com/?ctiid.329905https://vuldb.com/?id.329905https://vuldb.com/?submit.673720https://www.tenda.com.cn/https://github.com/QIU-DIE/CVE/issues/16