CVE-2025-12611 | Tenda AC21 16.03.08.16 /goform/SetPptpServerCfg formSetPPTPServer startIp buffer overflow

Inserito da Angelo Barbosa | Nov 2, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Tenda AC21 16.03.08.16. This vulnerability affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg. The manipulation of the argument startIp leads to buffer overflow.

This vulnerability is referenced as CVE-2025-12611. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2025-12611 | Tenda AC21 16.03.08.16 /goform/SetPptpServerCfg formSetPPTPServer startIp buffer overflow

Post correlati

CVE-2024-11827 | Out of the Block Plugin up to 2.8.3 on WordPress Shortcode ootb_query cross site scripting

CVE-2022-48767 | Linux Kernel up to 5.10.95/5.15.18/5.16.4 ceph_string memory leak

CVE-2025-24849 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Applications cleartext transmission (icsma-25-058-01)

CVE-2024-12825 | brechtvds Custom Related Posts Plugin up to 1.7.3 on WordPress authorization