CNNVD-202510-1095 Information

CNNVD ID

CNNVD-202510-1095

Related CVE

CVE-2025-11356

• CNNVD Published: 2025-10-07

Description (Chinese)

Tenda AC23是中国腾达（Tenda）公司的一款双频千兆无线路由器。 Tenda AC23 16.03.07.52及之前版本存在安全漏洞，该漏洞源于对文件/goform/SetStaticRouteCfg中参数list的错误操作，可能导致缓冲区溢出。

Description (English)

Tenda AC23 is a dual-frequency, giga-wireless router of Tenda, China. There is a security loophole in Tenda AC23 16.03.07.52 and earlier versions, which stems from an error in the operation of the list of parameters in the document/goform/SetStaticRouteCfg, which could lead to a spill over the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-10-07

Last Modified

2026-02-24

References

https://github.com/cymiao1978/cve/blob/main/12.md https://vuldb.com/?ctiid.327241 https://vuldb.com/?id.327241 https://vuldb.com/?submit.664923 https://www.tenda.com.cn/