CNNVD-202512-4779 Information

CNNVD ID

CNNVD-202512-4779

Related CVE

CVE-2025-15076

• CNNVD Published: 2025-12-25

Description (Chinese)

Tenda CH22是中国腾达（Tenda）公司的一款网络设备。 Tenda CH22 1.0.0.1版本存在路径遍历漏洞，该漏洞源于对文件/public/中未知函数的错误操作，可能导致路径遍历攻击。

Description (English)

Tenda CH22 is a network facility of Tenda China. Version Tenda CH22 1.0.0.1 has a path-to-path loophole, which stems from an error in the operation of an unknown function in file/public/, which may lead to a path-to-path attack.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

腾达

Published

2025-12-25

Last Modified

2026-02-24

References

https://vuldb.com/?id.338333 https://github.com/master-abc/cve/blob/main/Tenda%20CH22%20V1.0.0.1%20Router%20Authentication%20Bypass%20Vulnerability%20in%20R7WebsSecurityHandler%20function.md https://vuldb.com/?ctiid.338333 https://www.tenda.com.cn/ https://vuldb.com/?submit.721411 https://access.redhat.com/security/cve/cve-2025-15076