ГлавнаяУязвимости → CVE-2025-12611
8.8высокая

CVE-2025-12611

Описание

A vulnerability was identified in Tenda AC21 16.03.08.16. This vulnerability affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg. The manipulation of the argument startIp leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Затрагиваемое ПО
Tenda Ac21 firmwareTenda Ac21
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/LX-LX88/cve/issues/10https://vuldb.com/?ctiid.330906https://vuldb.com/?id.330906https://vuldb.com/?submit.678491https://www.tenda.com.cn/