Tenda I24 Firmware 3.0.0.4(2887)
Approved changes feed: RSS · Atom
cpe:2.3:o:tenda:i24_firmware:3.0.0.4\(2887\):*:*:*:*:*:*:*
part: o version: 3.0.0.4(2887) update: *
| Vendor | Tenda (cebb1c0a-7ddd-5bf6-9fc6-52b2b4f8dd42) |
|---|---|
| Product | I24 Firmware (5e64245f-674e-5736-be4f-b80d24d590cc) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-4007 |
vulnerable | 2026-06-03 15:01:46.501420 |
Tenda W12/i24 httpd modules cgidhcpsCfgSet stack-based overflow
HIGH (8.8)
A vulnerability classified as critical was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). Affected by this vulnerability is the function cgidhcpsCfgSet of the file /goform/modules of the component httpd. The manipulation of the argument json leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-04-28T07:31:05.788Z
Updated: 2025-04-28T16:16:02.573Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-3820 |
vulnerable | 2026-06-03 15:01:05.703341 |
Tenda W12/i24 httpd cgiSysUplinkCheckSet stack-based overflow
HIGH (8.8)
A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644) and classified as critical. Affected by this issue is the function cgiSysUplinkCheckSet of the file /bin/httpd. The manipulation of the argument hostIp1/hostIp2 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-04-19T20:31:06.957Z
Updated: 2025-04-21T14:41:40.160Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-3803 |
vulnerable | 2026-06-03 15:01:05.669460 |
Tenda W12/i24 httpd cgiSysScheduleRebootSet stack-based overflow
HIGH (8.8)
A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). It has been rated as critical. This issue affects the function cgiSysScheduleRebootSet of the file /bin/httpd. The manipulation of the argument rebootDate leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-04-19T15:00:15.751Z
Updated: 2025-04-21T02:34:15.662Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-3802 |
vulnerable | 2026-06-03 15:01:05.666680 |
Tenda W12/i24 httpd cgiPingSet stack-based overflow
HIGH (8.8)
A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). It has been declared as critical. This vulnerability affects the function cgiPingSet of the file /bin/httpd. The manipulation of the argument pingIP leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-04-19T14:31:05.921Z
Updated: 2025-04-21T14:58:30.910Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.