CNNVD-202509-4287 Information

CNNVD ID

CNNVD-202509-4287

Related CVE

CVE-2025-11117

• CNNVD Published: 2025-09-28

Description (Chinese)

Tenda CH22是中国腾达（Tenda）公司的一款网络设备。 Tenda CH22 1.0.0.1版本存在安全漏洞，该漏洞源于文件/goform/GstDhcpSetSer中函数formWrlExtraGet对参数dips的错误操作，可能导致缓冲区溢出。

Description (English)

Tenda CH22 is a network facility of Tenda China. There is a security loophole in version Tenda CH22 1.0.01, which stems from the error of the function FormWrlExtraGet against parameter dips in file/goform/GstDhcpSetSer, which may result in a spilling of the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-09-28

Last Modified

2026-02-24

References

https://vuldb.com/?id.326198 https://vuldb.com/?submit.662927 https://vuldb.com/?ctiid.326198 https://www.tenda.com.cn/ https://github.com/zhaoyinshan/CVE/issues/2 https://access.redhat.com/security/cve/cve-2025-11117