ГлавнаяУязвимости → CVE-2025-5862
8.8высокая

CVE-2025-5862

Описание

A vulnerability was found in Tenda AC7 15.03.06.44 and classified as critical. This issue affects the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Затрагиваемое ПО
Tenda Ac7 firmwareTenda Ac7
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://lavender-bicycle-a5a.notion.site/Tenda-AC7-formSetPPTPUserList-20a53a41781f806ca124cbdf99bff931?source=copy_linkhttps://vuldb.com/?ctiid.311621https://vuldb.com/?id.311621https://vuldb.com/?submit.591980https://www.tenda.com.cn/https://lavender-bicycle-a5a.notion.site/Tenda-AC7-formSetPPTPUserList-20a53a41781f806ca124cbdf99bff931