Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-29462

A buffer overflow vulnerability has been discovered in Tenda Ac15 V15.13.07.13. The vulnerability occurs when the webCgiGetUploadFile function calls the socketRead function to process HTTP request messages, resulting in the overwriting of a buffer on the stack.

Published

2025-04-03T20:15:24.383

Last Modified

2025-04-22T16:33:41.237

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	tenda	ac15_firmware	15.13.07.13	Yes
Hardware	tenda	ac15	-	No

References

https://hackmd.io/@7QWW9EKUSNGgPWZNOHkL2w/Sk4xbvejyx Exploit, Third Party Advisory ([email protected])