CVE-2025-11356
8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
Summary
A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and could be used.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Tenda | AC23 | 16.03.07.0 | affected |
| Tenda | AC23 | 16.03.07.1 | affected |
| Tenda | AC23 | 16.03.07.2 | affected |
| Tenda | AC23 | 16.03.07.3 | affected |
| Tenda | AC23 | 16.03.07.4 | affected |
| Tenda | AC23 | 16.03.07.5 | affected |
| Tenda | AC23 | 16.03.07.6 | affected |
| Tenda | AC23 | 16.03.07.7 | affected |
| Tenda | AC23 | 16.03.07.8 | affected |
| Tenda | AC23 | 16.03.07.9 | affected |
| Tenda | AC23 | 16.03.07.10 | affected |
| Tenda | AC23 | 16.03.07.11 | affected |
| Tenda | AC23 | 16.03.07.12 | affected |
| Tenda | AC23 | 16.03.07.13 | affected |
| Tenda | AC23 | 16.03.07.14 | affected |
| Tenda | AC23 | 16.03.07.15 | affected |
| Tenda | AC23 | 16.03.07.16 | affected |
| Tenda | AC23 | 16.03.07.17 | affected |
| Tenda | AC23 | 16.03.07.18 | affected |
| Tenda | AC23 | 16.03.07.19 | affected |
| Tenda | AC23 | 16.03.07.20 | affected |
| Tenda | AC23 | 16.03.07.21 | affected |
| Tenda | AC23 | 16.03.07.22 | affected |
| Tenda | AC23 | 16.03.07.23 | affected |
| Tenda | AC23 | 16.03.07.24 | affected |
| Tenda | AC23 | 16.03.07.25 | affected |
| Tenda | AC23 | 16.03.07.26 | affected |
| Tenda | AC23 | 16.03.07.27 | affected |
| Tenda | AC23 | 16.03.07.28 | affected |
| Tenda | AC23 | 16.03.07.29 | affected |
| Tenda | AC23 | 16.03.07.30 | affected |
| Tenda | AC23 | 16.03.07.31 | affected |
| Tenda | AC23 | 16.03.07.32 | affected |
| Tenda | AC23 | 16.03.07.33 | affected |
| Tenda | AC23 | 16.03.07.34 | affected |
| Tenda | AC23 | 16.03.07.35 | affected |
| Tenda | AC23 | 16.03.07.36 | affected |
| Tenda | AC23 | 16.03.07.37 | affected |
| Tenda | AC23 | 16.03.07.38 | affected |
| Tenda | AC23 | 16.03.07.39 | affected |
| Tenda | AC23 | 16.03.07.40 | affected |
| Tenda | AC23 | 16.03.07.41 | affected |
| Tenda | AC23 | 16.03.07.42 | affected |
| Tenda | AC23 | 16.03.07.43 | affected |
| Tenda | AC23 | 16.03.07.44 | affected |
| Tenda | AC23 | 16.03.07.45 | affected |
| Tenda | AC23 | 16.03.07.46 | affected |
| Tenda | AC23 | 16.03.07.47 | affected |
| Tenda | AC23 | 16.03.07.48 | affected |
| Tenda | AC23 | 16.03.07.49 | affected |
| Tenda | AC23 | 16.03.07.50 | affected |
| Tenda | AC23 | 16.03.07.51 | affected |
| Tenda | AC23 | 16.03.07.52 | affected |
Weaknesses
- CWE-120: Buffer Overflow
- CWE-119: Memory Corruption
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: partial
References
- https://vuldb.com/?id.327241
- https://vuldb.com/?ctiid.327241
- https://vuldb.com/?submit.664923
- https://github.com/cymiao1978/cve/blob/main/12.md
- https://www.tenda.com.cn/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.