CVE-2025-3167

Sažetak

A vulnerability, which was classified as problematic, has been found in Tenda AC23 16.03.07.52. This issue affects some unknown processing of the file /goform/VerAPIMant of the component API Interface. The manipulation of the argument getuid leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/LZY0522/CVE/blob/main/CVE_1.md
https://vuldb.com/?ctiid.303113
https://vuldb.com/?id.303113
https://vuldb.com/?submit.543150
https://www.tenda.com.cn/
https://github.com/LZY0522/CVE/blob/main/CVE_1.md

CVSS

Base:	6.8
Impact:	6.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:S/C:N/I:N/A:C

Zadnje važnije ažuriranje

07-04-2025 - 14:18

Objavljeno

03-04-2025 - 17:15