CVE-2025-15233 | Tenda M3 1.0.0.13(4903) /goform/setAdInfoDetail formSetAdInfoDetails heap-based overflow

Inserito da Angelo Barbosa | Dic 29, 2025 | CVE

A vulnerability labeled as critical has been found in Tenda M3 1.0.0.13(4903). This issue affects the function formSetAdInfoDetails of the file /goform/setAdInfoDetail. The manipulation of the argument adName/smsPassword/smsAccount/weixinAccount/weixinName/smsSignature/adRedirectUrl/adCopyRight/smsContent/adItemUID results in heap-based buffer overflow.

This vulnerability was named CVE-2025-15233. The attack may be performed from remote. In addition, an exploit is available.

CVE-2025-15233 | Tenda M3 1.0.0.13(4903) /goform/setAdInfoDetail formSetAdInfoDetails heap-based overflow

Post correlati

CVE-2024-2714 | Campcodes Complete Online DJ Booking System 1.0 booking-bwdates-reports-details.php fromdate sql injection

CVE-2023-23357 | QNAP QuLog Center cross site scripting (qsa-23-16)

CVE-2024-43177 | IBM Concert 1.0.0/1.0.1 certificate validation

CVE-2024-34483 | Faucet SDN Ryu 4.34 parser.py OFPGroupDescStats infinite loop (Issue 193)