CVE-2025-4007 | Tenda W12/i24 3.0.0.4(2887)/3.0.0.5(3644) httpd /goform/modules cgidhcpsCfgSet json stack-based overflow

A vulnerability classified as critical was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). Affected by this vulnerability is the function cgidhcpsCfgSet of the file /goform/modules of the component httpd. The manipulation of the argument json leads to stack-based buffer overflow.

This vulnerability is known as CVE-2025-4007. The attack can be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More