CNNVD-202508-1884 Information

CNNVD ID

CNNVD-202508-1884

Related CVE

CVE-2025-9007

• CNNVD Published: 2025-08-15

Description (Chinese)

Tenda CH22是中国腾达（Tenda）公司的一款网络设备。 Tenda CH22 1.0.0.1版本存在安全漏洞，该漏洞源于对文件/goform/editFileName中函数formeditFileName的错误操作，导致缓冲区溢出。

Description (English)

Tenda CH22 is a network facility of Tenda China. There is a security loophole in version Tenda CH22 1.0.01, which results from an error in the function FormeditFileName of the file/goform/editFileName, resulting in a buffer spill.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-08-15

Last Modified

2026-02-24

References

https://github.com/moweizhang1994/cve/issues/3 https://www.tenda.com.cn/ https://vuldb.com/?submit.628867 https://vuldb.com/?id.320036 https://vuldb.com/?ctiid.320036 https://access.redhat.com/security/cve/cve-2025-9007 https://nvd.nist.gov/vuln/detail/CVE-2025-9007

Patch

https://www.tenda.com.cn/material/show/2230