CNNVD-202511-039 Information

CNNVD ID

CNNVD-202511-039

Related CVE

CVE-2025-12596

• CNNVD Published: 2025-11-02

Description (Chinese)

Tenda AC23是中国腾达（Tenda）公司的一款双频千兆无线路由器。 Tenda AC23 16.03.07.52版本存在安全漏洞，该漏洞源于对文件/goform/saveParentControlInfo中参数Time的错误操作，可能导致缓冲区溢出。

Description (English)

Tenda AC23 is a dual-frequency, giga-wireless router of Tenda, China. There is a security loophole in version 16.03.07.52 of Tenda AC 23 16.03.52, which stems from an error in the operation of Time, the parameter in document/goform/saveParentcontrolInfo, which could lead to a spill out of the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-11-02

Last Modified

2026-02-24

References

https://github.com/LX-LX88/cve/issues/9 https://vuldb.com/?submit.677585 https://vuldb.com/?ctiid.330891 https://www.tenda.com.cn/ https://vuldb.com/?id.330891 https://access.redhat.com/security/cve/cve-2025-12596