CVE-2025-9297 | Tenda i22 1.0.0.3(4687) /goform/wxportalauth formWeixinAuthInfoGet Type stack-based overflow

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability was found in Tenda i22 1.0.0.3(4687). It has been rated as critical. This impacts the function formWeixinAuthInfoGet of the file /goform/wxportalauth. Performing manipulation of the argument Type results in stack-based buffer overflow.

This vulnerability is identified as CVE-2025-9297. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-9297 | Tenda i22 1.0.0.3(4687) /goform/wxportalauth formWeixinAuthInfoGet Type stack-based overflow

Post correlati

CVE-2024-27530 | wasm3 139076a ForEachModule use after free (Issue 458)

CVE-2024-4928 | SourceCodester Simple Online Bidding System 1.0 ajax.php id sql injection

CVE-2024-6869 | Falang Multilanguage Plugin up to 1.3.52 on WordPress Translation Update authorization

CVE-2025-5685 | Tenda CH22 1.0.0.1 /goform/Natlimit formNatlimit page stack-based overflow