CVE-2025-4867

CWE-4043 documents3 sources

Severity

7.1HIGH

EPSS

0.3%

top 44.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tenda A15 Tenda A15 Firmware

Timeline

PublishedMay 18

Description

A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as problematic. Affected by this vulnerability is the function formArpNerworkSet of the file /goform/ArpNerworkSet. The manipulation leads to denial of service. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5tenda/a1515.13.07.13

▶NVDtenda/a15_firmware15.13.07.13

🔴Vulnerability Details

CVEList

Tenda A15 ArpNerworkSet formArpNerworkSet denial of service↗2025-05-18

▶

GHSA

GHSA-88vx-23hw-hc33: A vulnerability was found in Tenda A15 15↗2025-05-18

▶