CNNVD-202510-1275 Information

Oct 09, 2025 cve

CNNVD ID

CNNVD-202510-1275

CVE-2025-11550

CNNVD Published: 2025-10-09

Description (Chinese)

Tenda W12是中国腾达（Tenda）公司的一款高性能无线接入点。 Tenda W12 3.0.0.6版本存在安全漏洞，该漏洞源于HTTP请求处理器组件中/goform/modules文件的wifiScheduledSet函数对参数wifiScheduledSet的错误操作，可能导致空指针取消引用。

Description (English)

Tenda W12 is a high-performance wireless access point for Tenda, China. The security loophole in version Tenda W12 3.0.0.6 arises from the error of the wifiScheduledSet function of the HTTP request processor component/goform/modules file on the parameter wifiScheduledSet, which may result in an empty pointer cancellation of the reference.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-10-09

Last Modified

2026-02-24

References

https://github.com/z472421519/BinaryAudit/blob/main/PoC/NPD/Tenda_W12/cgiWifiScheduledSet/cgiWifiScheduledSet.md https://vuldb.com/?ctiid.327709 https://vuldb.com/?id.327709 https://vuldb.com/?submit.670118 https://www.tenda.com.cn/ https://access.redhat.com/security/cve/cve-2025-11550

Share on: