CRITICAL🇵🇱 Wersja polska

CVE-2025-45779

CVSS 9.8v3.1pub. 2025-05-12upd. 2025-06-13

Tenda AC10 V1.0re_V15.03.06.46 is vulnerable to Buffer Overflow in the formSetPPTPUserList handler via the list POST parameter.

🤖 AI Analysis
How it works

The vulnerability results from insufficient validation of input data length in the POST parameter named 'list', processed by the formSetPPTPUserList handler (CWE-120 — classic buffer overflow). An attacker can send a specially crafted HTTP request containing an excessively long value of the 'list' parameter, which causes a buffer overflow in the device memory. The overflow can overwrite critical data structures or return addresses, leading to arbitrary code execution.

Impact

Successful exploitation of the vulnerability may enable an attacker to execute code remotely (RCE) on the device with high privileges, and as a result, gain full control over the router, compromise the confidentiality and integrity of data, and cause permanent disruption to its operation.

Mitigation & patch

Apply patches available from the manufacturer according to the references. It is recommended to monitor the manufacturer's website (tendacn.com) for firmware updates. Until the patch is applied, it is recommended to restrict access to the device's administrative interface exclusively to trusted hosts and isolate the device from the public Internet.

Who is affected

Tenda AC10 in firmware version V1.0re_V15.03.06.46

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tenda Ac10

    HW
    Tenda
    1.0
  • Tenda Ac10 Firmware

    OS
    Tenda
    15.03.06.46
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2018-14558CRITICAL9.8⚠ KEVten sam produkt

An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firm...

CVE-2025-67073CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC10 – RCE i DoS przez pole serviceName

CVE-2025-25456CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC10 – podatność w funkcji AdvSetMacMtuWan (mac2)

CVE-2025-25675CRITICAL9.8PL ✓ten sam produkt

Command injection w Tenda AC10 — zdalne wykonanie kodu przez formexeCommand

CVE-2025-25674CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w Tenda AC10 – parametr ssid w form_fast_setting_wifi_set