ГлавнаяУязвимости → CVE-2025-12596
8.8высокая

CVE-2025-12596

Описание

A security vulnerability has been detected in Tenda AC23 16.03.07.52. Affected is the function saveParentControlInfo of the file /goform/saveParentControlInfo. Such manipulation of the argument Time leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

Затрагиваемое ПО
Tenda Ac23 firmwareTenda Ac23
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/LX-LX88/cve/issues/9https://vuldb.com/?ctiid.330891https://vuldb.com/?id.330891https://vuldb.com/?submit.677585https://www.tenda.com.cn/https://github.com/LX-LX88/cve/issues/9