Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-5527

Опубликовано: 03 июн. 2025
Источник: nvd
CVSS3: 8.8
CVSS2: 9
EPSS Низкий

Описание

A vulnerability was found in Tenda RX3 16.03.13.11_multi_TDE01. It has been rated as critical. This issue affects the function save_staticroute_data of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:tenda:rx3_firmware:16.03.13.11_multi:*:*:*:*:*:*:*
cpe:2.3:h:tenda:rx3:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 35%
0.0014
Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-119
CWE-787

Связанные уязвимости

CVSS3: 8.8
github
3 месяца назад

A vulnerability was found in Tenda RX3 16.03.13.11_multi_TDE01. It has been rated as critical. This issue affects the function save_staticroute_data of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVSS3: 8.8
fstec
3 месяца назад

Уязвимость функции save_staticroute_data() микропрограммного обеспечения маршрутизаторов Tenda RX3, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

EPSS

Процентиль: 35%
0.0014
Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-119
CWE-787