CVE-2025-15217 | Tenda AC23 16.03.07.52 HTTP POST Request formSetPPTPUserList list buffer overflow

Inserito da Angelo Barbosa | Dic 28, 2025 | CVE

A vulnerability marked as critical has been reported in Tenda AC23 16.03.07.52. Affected is the function formSetPPTPUserList of the component HTTP POST Request Handler. Performing manipulation of the argument list results in buffer overflow.

This vulnerability is identified as CVE-2025-15217. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-15217 | Tenda AC23 16.03.07.52 HTTP POST Request formSetPPTPUserList list buffer overflow

Post correlati

CVE-2023-50072 | OpenKM 7.1.40 Note Upload cross site scripting

CVE-2024-5723 | Centreon prior 22.04.24/22.10.22/23.04.18/23.10.12/24.04.0 updateServiceHost sql injection

CVE-2024-2058 | SourceCodester Petrol Pump Management Software 1.0 /admin/app/product.php photo unrestricted upload

CVE-2024-20028 | MediaTek MT8512 Da out-of-bounds write (ALPS08541632)