CVE-2025-9299 | Tenda M3 1.0.0.12 getMasterPassengerAnalyseData formGetMasterPassengerAnalyseData Time stack-based overflow

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability identified as critical has been detected in Tenda M3 1.0.0.12. Affected by this vulnerability is the function formGetMasterPassengerAnalyseData of the file /goform/getMasterPassengerAnalyseData. The manipulation of the argument Time leads to stack-based buffer overflow.

This vulnerability is listed as CVE-2025-9299. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-9299 | Tenda M3 1.0.0.12 getMasterPassengerAnalyseData formGetMasterPassengerAnalyseData Time stack-based overflow

Post correlati

CVE-2024-35011 | idcCMS 1.35 infoType_deal.php cross-site request forgery

CVE-2025-9024 | PHPGurukul Beauty Parlour Management System 1.1 /book-appointment.php Message sql injection

CVE-2024-33004 | SAP BusinessObjects Business Intelligence Platform (Webservices) sensitive information

CVE-2025-3322 | B. Braun OnlineSuite 3.0 expression language injection