CNNVD-202507-1561 Information

CNNVD ID

CNNVD-202507-1561

Related CVE

CVE-2025-7415

• CNNVD Published: 2025-07-10

Description (Chinese)

Tenda O3V2是中国腾达（Tenda）公司的一款室外无线网桥。 Tenda O3V2 1.0.0.12(3880)版本存在注入漏洞，该漏洞源于文件/goform/getTraceroute中参数dest的操作可能导致命令注入。

Description (English)

Tenda O3V2 is an outdoor wireless bridge of Tenda, China. Version 1.0.0.12 (3880) of Tenda O3V2.0.0.12 (3880) contains an injection loophole that originates from the operation of the parameter dest in file/goform/getTraceroute which may lead to the injection of the command.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

腾速科技

Published

2025-07-10

Last Modified

2026-02-24

References

https://www.tenda.com.cn/ https://vuldb.com/?ctiid.315875 https://github.com/wudipjq/my_vuln/blob/main/Tenda3/vuln_48/48.md https://github.com/wudipjq/my_vuln/blob/main/Tenda3/vuln_48/48.md#poc https://vuldb.com/?id.315875 https://vuldb.com/?submit.608856 https://access.redhat.com/security/cve/cve-2025-7415 https://nvd.nist.gov/vuln/detail/CVE-2025-7415