CVE-2025-29462: Buffer Overflow
First published: Thu Apr 03 2025(Updated: )
A buffer overflow vulnerability has been discovered in Tenda Ac15 V15.13.07.13. The vulnerability occurs when the webCgiGetUploadFile function calls the socketRead function to process HTTP request messages, resulting in the overwriting of a buffer on the stack.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda AC15 | ||
| All of | ||
| Tenda A15 | =15.13.07.13 | |
| Tenda AC15 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-29462?
CVE-2025-29462 is considered a critical severity vulnerability due to its buffer overflow nature that can lead to remote code execution.
How do I fix CVE-2025-29462?
To fix CVE-2025-29462, update the Tenda AC15 firmware to the latest version provided by Tenda that addresses this vulnerability.
What are the potential impacts of CVE-2025-29462?
The potential impacts of CVE-2025-29462 include unauthorized access, data leakage, and remote control of the vulnerable device.
Which devices are affected by CVE-2025-29462?
The devices affected by CVE-2025-29462 are Tenda AC15 routers running the specified vulnerable firmware version V15.13.07.13.
Is my Tenda AC15 router vulnerable to CVE-2025-29462?
If your Tenda AC15 router is running firmware version V15.13.07.13, it is vulnerable to CVE-2025-29462 and should be updated immediately.
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/author
- agent/source
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- vendor/tenda
- canonical/tenda ac15
- canonical/tenda a15
- version/tenda a15/15.13.07.13