ГлавнаяУязвимости → CVE-2025-9812
8.8высокая

CVE-2025-9812

Описание

A vulnerability was determined in Tenda CH22 1.0.0.1. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Executing manipulation of the argument cmdinput can lead to buffer overflow. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Tenda Ch22 firmwareTenda Ch22
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/csgii/cve/issues/1https://vuldb.com/?ctiid.322139https://vuldb.com/?id.322139https://vuldb.com/?submit.641148https://www.tenda.com.cn/