CVE-2025-14994 | Tenda HTTP Request /goform/webtypelibrary strcat stack-based overflow

Inserito da Angelo Barbosa | Dic 20, 2025 | CVE

A vulnerability was found in Tenda. It has been rated as critical. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow.

This vulnerability is tracked as CVE-2025-14994. The attack is possible to be carried out remotely. Moreover, an exploit is present.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

CVE-2025-14994 | Tenda HTTP Request /goform/webtypelibrary strcat stack-based overflow

Post correlati

CVE-2025-7886 | pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486 class.database.php getUserLanguage user_id sql injection

CVE-2024-8173 | code-projects Blood Bank System 1.0 Login Page /login.php user sql injection

CVE-2024-56326 | Pallets Jinja up to 3.1.4 str.format special elements used in a template engine (GHSA-q2x7-8rv6-6q7h)

CVE-2025-64286 | WpEstate WP Rentals Plugin up to 3.13.1 on WordPress cross-site request forgery