CVE-2025-15218Improper Restriction of Operations within the Bounds of a Memory Buffer in Ac10u

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-120Classic Buffer Overflow4 documents4 sources
Severity
7.4HIGHNVD
EPSS
0.1%
top 64.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Tenda Ac10uTenda Ac10u Firmware
Timeline
PublishedDec 30

Description

A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Parameter Handler. Executing a manipulation of the argument lanMask can lead to buffer overflow. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5tenda/ac10u15.03.06.48, 15.03.06.49+1
NVDtenda/ac10u_firmware15.03.06.48, 15.03.06.49+1

🔴Vulnerability Details

2
GHSA
GHSA-6mxp-7c6p-vwm2: A weakness has been identified in Tenda AC10U 152025-12-30
CVEList
Tenda AC10U POST Request Parameter AdvSetLanip fromadvsetlanip buffer overflow2025-12-30

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS Tenda AdvSetLanip lanMask Parameter Buffer Overflow Attempt (CVE-2025-5861, CVE-2025-15218)2025-06-09
CVE-2025-15218 — Tenda Ac10u vulnerability | cvebase