ГлавнаяУязвимости → CVE-2025-12265
8.8высокая

CVE-2025-12265

Описание

A weakness has been identified in Tenda CH22 1.0.0.1. Affected by this issue is the function fromVirtualSer of the file /goform/VirtualSer. This manipulation of the argument page causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

Затрагиваемое ПО
Tenda Ch22 firmwareTenda Ch22
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/QIU-DIE/CVE/issues/18https://vuldb.com/?ctiid.329936https://vuldb.com/?id.329936https://vuldb.com/?submit.674012https://www.tenda.com.cn/