CVE-2025-7423 Tenda O3V2 httpd setWrlFilterList formWifiMacFilterSet stack-based overflow

A vulnerability classified as critical was found in Tenda O3V2 1.0.0.123880. Affected by this vulnerability is the function formWifiMacFilterSet of the file /goform/setWrlFilterList of the component httpd. The manipulation of the argument macList leads to stack-based buffer overflow. The attack c...

CVE-2025-7423 Tenda O3V2 httpd setWrlFilterList formWifiMacFilterSet stack-based overflow

A vulnerability classified as critical was found in Tenda O3V2 1.0.0.123880. Affected by this vulnerability is the function formWifiMacFilterSet of the file /goform/setWrlFilterList of the component httpd. The manipulation of the argument macList leads to stack-based buffer overflow. The attack c...

CVE-2025-7422 Tenda O3V2 httpd setNetworkService setAutoReboot stack-based overflow

A vulnerability classified as critical has been found in Tenda O3V2 1.0.0.123880. Affected is the function setAutoReboot of the file /goform/setNetworkService of the component httpd. The manipulation of the argument week leads to stack-based buffer overflow. It is possible to launch the attack...

CVE-2025-7422 Tenda O3V2 httpd setNetworkService setAutoReboot stack-based overflow

A vulnerability classified as critical has been found in Tenda O3V2 1.0.0.123880. Affected is the function setAutoReboot of the file /goform/setNetworkService of the component httpd. The manipulation of the argument week leads to stack-based buffer overflow. It is possible to launch the attack...

CVE-2025-7422

CVE-2025-7422 affects Tenda O3V2 v1.0.0.12(3880). The vulnerability is in the httpd component’s /goform/setNetworkService function, where manipulating the argument week triggers a stack-based buffer overflow. Remote exploitation is possible, and the exploit has been publicly disclosed. Public sou...

CVE-2025-7206

A vulnerability, which was classified as critical, has been found in D-Link DIR-825 2.10. This issue affects the function sub410DDC of the file switchlanguage.cgi of the component httpd. The manipulation of the argument Language leads to stack-based buffer overflow. The attack may be initiated...

CVE-2025-7420

A vulnerability was found in Tenda O3V2 1.0.0.123880. It has been declared as critical. This vulnerability affects the function formWifiBasicSet of the file /goform/setWrlBasicInfo of the component httpd. The manipulation of the argument extChannel leads to stack-based buffer overflow. The attack...

CVE-2025-7421

The CVE-2025-7421 vulnerability affects Tenda O3V2 1.0.0.12(3880). It targets the httpd component, specifically the /goform/operateMacFilter file’s fromMacFilterModify function, where manipulating the mac argument causes a stack-based buffer overflow. This can enable remote exploitation; multiple...

CVE-2025-7421 Tenda O3V2 httpd operateMacFilter fromMacFilterModify stack-based overflow

A vulnerability was found in Tenda O3V2 1.0.0.123880. It has been rated as critical. This issue affects the function fromMacFilterModify of the file /goform/operateMacFilter of the component httpd. The manipulation of the argument mac leads to stack-based buffer overflow. The attack may be...

CVE-2025-7421 Tenda O3V2 httpd operateMacFilter fromMacFilterModify stack-based overflow

A vulnerability was found in Tenda O3V2 1.0.0.123880. It has been rated as critical. This issue affects the function fromMacFilterModify of the file /goform/operateMacFilter of the component httpd. The manipulation of the argument mac leads to stack-based buffer overflow. The attack may be...

PT-2025-29393 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14408 Description: A critical vulnerability exists in the frmL7ProtForm function of the /goform/L7Prot file. Manipulation of the argument page leads to a stack-based buffer overflow, potentially allowing for remote...

CVE-2025-7420 Tenda O3V2 httpd setWrlBasicInfo formWifiBasicSet stack-based overflow

A vulnerability was found in Tenda O3V2 1.0.0.123880. It has been declared as critical. This vulnerability affects the function formWifiBasicSet of the file /goform/setWrlBasicInfo of the component httpd. The manipulation of the argument extChannel leads to stack-based buffer overflow. The attack...

CVE-2025-7420

CVE-2025-7420 affects Tenda O3V2 (version 1.0.0.12(3880)). The vulnerability is in the httpd component’s function setWrlBasicInfo (formWifiBasicSet). The root cause is a stack-based buffer overflow triggered by manipulating the extChannel argument in /goform/setWrlBasicInfo. It is remotely exploi...

CVE-2025-7419

The CVE-2025-7419 entry applies to Tenda O3V2, version 1.0.0.12(3880). The vulnerability is in the httpd component, specifically the fromSpeedTestSet function in /goform/setRateTest. The destIP parameter length validation is inadequate, causing a stack-based buffer overflow that can be exploited ...

CVE-2025-7419 Tenda O3V2 httpd setRateTest fromSpeedTestSet stack-based overflow

A vulnerability was found in Tenda O3V2 1.0.0.123880. It has been classified as critical. This affects the function fromSpeedTestSet of the file /goform/setRateTest of the component httpd. The manipulation of the argument destIP leads to stack-based buffer overflow. It is possible to initiate the...

CVE-2025-7418

CVE-2025-7418 affects Tenda O3V2 1.0.0.12(3880). The vulnerable component is httpd, function fromPingResultGet in /goform/setPing. Manipulating the destIP argument triggers a stack-based buffer overflow, enabling remote attack. Public exploit/public disclosure is noted. Evidence across multiple s...

CVE-2025-7418 Tenda O3V2 httpd setPing fromPingResultGet stack-based overflow

A vulnerability was found in Tenda O3V2 1.0.0.123880 and classified as critical. Affected by this issue is the function fromPingResultGet of the file /goform/setPing of the component httpd. The manipulation of the argument destIP leads to stack-based buffer overflow. The attack may be launched...

CVE-2025-7418 Tenda O3V2 httpd setPing fromPingResultGet stack-based overflow

A vulnerability was found in Tenda O3V2 1.0.0.123880 and classified as critical. Affected by this issue is the function fromPingResultGet of the file /goform/setPing of the component httpd. The manipulation of the argument destIP leads to stack-based buffer overflow. The attack may be launched...

CVE-2025-49527

Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-7417

The CVE-2025-7417 entry concerns Tenda O3V2 (version 1.0.0.12(3880)). The vulnerability is in the httpd component, specifically the fromNetToolGet function in /goform/setPingInfo, where manipulation of the ip argument causes a stack-based buffer overflow. It is exploitable remotely and exploitati...