CVE-2025-25667 | Tenda AC8V4 16.03.34.06 get_parentControl_list_Info urls stack-based overflow

Posted by Angelo Barbosa | Feb 21, 2025 | CVE

A vulnerability was found in Tenda AC8V4 16.03.34.06. It has been declared as critical. Affected by this vulnerability is the function get_parentControl_list_Info. The manipulation of the argument urls leads to stack-based buffer overflow.

This vulnerability is known as CVE-2025-25667. The attack can be launched remotely. There is no exploit available.

CVE-2025-25667 | Tenda AC8V4 16.03.34.06 get_parentControl_list_Info urls stack-based overflow

Related Posts

CVE-2023-45139 | fonttools prior 4.43.0 xml external entity reference (GHSA-6673-4983)

CVE-2024-0193 | Linux Kernel Netfilter nf_tables_api.c nft_set_commit_update use after free

CVE-2024-21511 | mysql2 up to 3.9.6 readCodeFor timezone code injection (SNYK-JS-MYSQL2-6670046)

CVE-2024-33437 | CSS Exfil Protection 1.1.0 information disclosure (Issue 41)