CVE-2025-5763

CWE-74CWE-77Command Injection3 documents3 sources
Severity
5.1MEDIUM
EPSS
4.3%
top 11.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Tenda CP3Tenda CP3 Firmware
Timeline
PublishedJun 6

Description

A vulnerability has been found in Tenda CP3 11.10.00.2311090948 and classified as critical. Affected by this vulnerability is the function sub_F3C8C of the file apollo. The manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5tenda/cp311.10.00.2311090948
NVDtenda/cp3_firmware11.10.00.2311090948

🔴Vulnerability Details

2
CVEList
Tenda CP3 apollo sub_F3C8C command injection2025-06-06
GHSA
GHSA-rv56-m3gf-cgwm: A vulnerability has been found in Tenda CP3 112025-06-06
CVE-2025-5763 (MEDIUM CVSS 5.1) | A vulnerability has been found in T | cvebase.io