CVE-2025-15231 | Tenda M3 1.0.0.13(4903) /goform/setVlanInfo formSetRemoteVlanInfo ID/vlan/port stack-based overflow

Inserito da Angelo Barbosa | Dic 29, 2025 | CVE

A vulnerability categorized as critical has been discovered in Tenda M3 1.0.0.13(4903). This affects the function formSetRemoteVlanInfo of the file /goform/setVlanInfo. Executing manipulation of the argument ID/vlan/port can lead to stack-based buffer overflow.

This vulnerability is handled as CVE-2025-15231. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-15231 | Tenda M3 1.0.0.13(4903) /goform/setVlanInfo formSetRemoteVlanInfo ID/vlan/port stack-based overflow

Post correlati

CVE-2024-37484 | Dylan James Zephyr Project Manager Plugin up to 3.3.97 on WordPress privileges management

CVE-2024-29171 | Dell BSAFE SSL-J up to 7.2.1 certificate validation (dsa-2024-221)

CVE-2022-48841 | Linux Kernel up to 5.16.16 ice_update_vsi_tx_ring_stats null pointer dereference (2397270ec97c/f153546913ba)

CVE-2025-23918 | Smallerik File Browser Plugin up to 1.1 on WordPress unrestricted upload