ГлавнаяУязвимости → CVE-2025-12622
8.8высокая

CVE-2025-12622

Описание

A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function formSysRunCmd of the file /goform/SysRunCmd. This manipulation of the argument getui causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Tenda Ac10 firmwareTenda Ac10
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://pan.baidu.com/s/1Jl1zy5niigg1XYm8ZCh_Lghttps://vuldb.com/?ctiid.330914https://vuldb.com/?id.330914https://vuldb.com/?submit.678889https://www.tenda.com.cn/https://www.yuque.com/ba1ma0-an29k/nnxoap/rg8eug0zk8ep3zne?singleDoc