CVE-2025-12210 | Tenda O3 1.0.0.10(2478) /goform/AdvSetLanip SetValue/GetValue lanIp stack-based overflow

Inserito da Angelo Barbosa | Ott 25, 2025 | CVE

A vulnerability marked as critical has been reported in Tenda O3 1.0.0.10(2478). Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2025-12210. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-12210 | Tenda O3 1.0.0.10(2478) /goform/AdvSetLanip SetValue/GetValue lanIp stack-based overflow

Post correlati

CVE-2024-6182 | LabVantage LIMS 2017 rc sdcid/keyid1 cross site scripting

CVE-2024-6512 | Devolutions Server up to 2024.2.10.0 PAM Access Request authorization (DEVO-2024-0013)

CVE-2024-2868 | devitemsllc ShopLentor Plugin up to 2.8.3 on WordPress slitems cross site scripting

CVE-2025-49031 | Stefan M SMu Manual DoFollow Plugin up to 1.8.1 on WordPress cross site scripting