CVE-2025-9298 | Tenda M3 1.0.0.12 /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability categorized as critical has been discovered in Tenda M3 1.0.0.12. Affected is the function formQuickIndex of the file /goform/QuickIndex. Executing manipulation of the argument PPPOEPassword can lead to stack-based buffer overflow.

This vulnerability is tracked as CVE-2025-9298. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-9298 | Tenda M3 1.0.0.12 /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

Post correlati

CVE-2024-51781 | Loop Now Technologies Firework Shoppable Live Video Plugin up to 6.3 on WordPress cross site scripting

CVE-2024-0376 | Premium Addons for Elementor Plugin up to 4.10.16 on WordPress Wrapper Link Widget cross site scripting

CVE-2025-21290 | Microsoft

CVE-2025-38347 | Linux Kernel up to 6.6.94/6.12.34/6.15.3 f2fs hung_task_timeout_secs deadlock