CVE-2025-11423

CWE-119Buffer Overflow3 documents3 sources
Severity
8.9HIGH
EPSS
0.6%
top 31.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Tenda Ch22Tenda Ch22 Firmware
Timeline
PublishedOct 8

Description

A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. Performing a manipulation of the argument page results in memory corruption. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5tenda/ch221.0.0.1
NVDtenda/ch22_firmware1.0.0.1

🔴Vulnerability Details

2
GHSA
GHSA-vh9p-m232-vmm5: A vulnerability was found in Tenda CH22 12025-10-08
CVEList
Tenda CH22 SafeEmailFilter formSafeEmailFilter memory corruption2025-10-08
CVE-2025-11423 (HIGH CVSS 8.9) | A vulnerability was found in Tenda | cvebase.io