exploitDog

CVE-2025-32010

Опубликовано: 20 авг. 2025

Источник: nvd

CVSS3: 8.1

CVSS3: 9.8

EPSS Низкий

Описание

A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:tenda:ac6_firmware:02.03.01.110:*:*:*:*:*:*:*

cpe:2.3:h:tenda:ac6:5.0:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00579

Низкий

8.1 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-121

Связанные уязвимости

GHSA-jvxw-4rxx-x5hg

CVSS3: 8.1

github

6 месяцев назад

A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this vulnerability.

EPSS

Процентиль: 68%

0.00579

Низкий

8.1 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-121