CVE-2025-9748 | Tenda CH22 1.0.0.1 httpd /goform/IPSECsave fromIpsecitem ipsecno stack-based overflow

A vulnerability was found in Tenda CH22 1.0.0.1. It has been declared as critical. Affected by this issue is the function fromIpsecitem of the file /goform/IPSECsave of the component httpd. Executing manipulation of the argument ipsecno can lead to stack-based buffer overflow.

This vulnerability appears as CVE-2025-9748. The attack may be performed from a remote location. There is no available exploit.VulDB Recent EntriesRead More