CNNVD-202507-1844 Information
CNNVD ID
CNNVD-202507-1844
Related CVE
- CNNVD Published: 2025-07-14
Description (Chinese)
Tenda AC500是中国腾达(Tenda)公司的一个千兆端口访问控制器。 Tenda AC500 2.0.1.9(1307)版本存在安全漏洞,该漏洞源于文件/goform/setWtpData中参数radio_2g_1的错误操作导致栈缓冲区溢出。
Description (English)
Tenda AC500 is a Ggg port access controller for Tenda, China. There is a security loophole in the version of Tenda AC500 2.0.1.9 (1307), which stems from the error in the radio 2g 1 of the parameter in the document/goform/setWtpData, resulting in the spilling out of the fence.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
腾速科技
Published
2025-07-14
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.316285 https://vuldb.com/?id.316285 https://github.com/panda666-888/vuls/blob/main/tenda/ac500/formSetAPCfg.md https://github.com/panda666-888/vuls/blob/main/tenda/ac500/formSetAPCfg.md#poc https://www.tenda.com.cn/ https://vuldb.com/?submit.615169 https://access.redhat.com/security/cve/cve-2025-7586
Share on: