First published: Fri Jan 10 2025(Updated: )
Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow vulnerability in /goform/SetOnlineDevName, which may lead to remote arbitrary code execution.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Tenda AC9 V1.0 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-22946 is considered a high severity vulnerability due to its potential for remote arbitrary code execution.
To fix CVE-2025-22946, you should update the Tenda AC9 to the latest firmware version that addresses this vulnerability.
CVE-2025-22946 is caused by a stack overflow vulnerability in the /goform/SetOnlineDevName function of the Tenda AC9 firmware.
Exploitation of CVE-2025-22946 may lead to remote arbitrary code execution, allowing an attacker to execute malicious code on the affected device.
CVE-2025-22946 specifically affects the Tenda AC9 V1.0 firmware version 15.03.05.19.