exploitDog

GHSA-mwc7-76g4-3ffm

Опубликовано: 17 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A Buffer overflow vulnerability in function fromAdvSetMacMtuWan of bin httpd in Tenda AC10V4.0 V16.03.10.20 allows remote attackers to cause denial of service and possibly code execution by sending a post request with a crafted payload (field serviceName) to /goform/AdvSetMacMtuWan.

A Buffer overflow vulnerability in function fromAdvSetMacMtuWan of bin httpd in Tenda AC10V4.0 V16.03.10.20 allows remote attackers to cause denial of service and possibly code execution by sending a post request with a crafted payload (field serviceName) to /goform/AdvSetMacMtuWan.

Ссылки

EPSS

Процентиль: 54%

0.00319

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2025-67073

CVSS3: 9.8

nvd

около 2 месяцев назад

A Buffer overflow vulnerability in function fromAdvSetMacMtuWan of bin httpd in Tenda AC10V4.0 V16.03.10.20 allows remote attackers to cause denial of service and possibly code execution by sending a post request with a crafted payload (field `serviceName`) to /goform/AdvSetMacMtuWan.

EPSS

Процентиль: 54%

0.00319

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-120