CNNVD-202508-2631 Information

CNNVD ID

CNNVD-202508-2631

Related CVE

CVE-2025-9298

• CNNVD Published: 2025-08-21

Description (Chinese)

Tenda M3是中国腾达（Tenda）公司的一款门禁控制器。 Tenda M3 1.0.0.12版本存在安全漏洞，该漏洞源于对参数PPPOEPassword的错误操作导致栈缓冲区溢出。

Description (English)

Tenda M3 is a door-ban controller for Tenda, China. There is a security loophole in version Tenda M3.0.0.12, which stems from an error in the application of the parameter PPPOEPASSword, resulting in the spilling out of the fence.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-08-21

Last Modified

2026-02-24

References

https://github.com/davybat/IoT-Vuls/blob/main/tenda/formQuickIndex.md#poc https://www.tenda.com.cn/ https://vuldb.com/?submit.632335 https://vuldb.com/?id.320903 https://vuldb.com/?ctiid.320903 https://nvd.nist.gov/vuln/detail/CVE-2025-9298