CVE-2025-12273

CWE-119Buffer OverflowCWE-120Classic Buffer Overflow4 documents4 sources
Severity
7.4HIGH
EPSS
0.5%
top 36.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Tenda Ch22Tenda Ch22 Firmware
Timeline
PublishedOct 27

Description

A weakness has been identified in Tenda CH22 1.0.0.1. Affected is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. Executing a manipulation of the argument page can lead to buffer overflow. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5tenda/ch221.0.0.1
NVDtenda/ch22_firmware1.0.0.1

🔴Vulnerability Details

2
CVEList
Tenda CH22 webExcptypemanFilter fromwebExcptypemanFilter buffer overflow2025-10-27
GHSA
GHSA-j5qm-4847-78qp: A weakness has been identified in Tenda CH22 12025-10-27

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS Tenda webExcptypemanFilter page Parameter Buffer Overflow Attempt (CVE-2025-12273)2025-10-27