ГлавнаяУязвимости → CVE-2025-13400
8.8высокая

CVE-2025-13400

Описание

A vulnerability was detected in Tenda CH22 1.0.0.1. Affected is the function formWrlExtraGet of the file /goform/WrlExtraGet. Performing a manipulation of the argument chkHz results in buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Затрагиваемое ПО
Tenda Ch22 firmwareTenda Ch22
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/f000x0/cve/issues/14https://vuldb.com/?ctiid.332926https://vuldb.com/?id.332926https://vuldb.com/?submit.692145https://www.tenda.com.cn/