CVE-2025-3786 – Tenda AC15 Wireless Repeat Buffer Overflow Vulnerability

April 22, 2025

CVE ID : CVE-2025-3786

Published : April 18, 2025, 9:15 a.m. | 4 days, 4 hours ago

Description : A vulnerability was found in Tenda AC15 up to 15.03.05.19 and classified as critical. This issue affects the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument mac leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-32953 – Z80pack GitHub Token Exposure

Next Article CVE-2025-3785 – D-Link DWR-M961 Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-37796 – “Linux Kernel WiFi at76c50x Use After Free”

May 1, 2025

CVE ID : CVE-2025-37796

Published : May 1, 2025, 2:15 p.m. | 1 hour, 10 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

wifi: at76c50x: fix use after free access in at76_disconnect

The memory pointed to by priv is freed at the end of at76_delete_device
function (using ieee80211_free_hw). But the code then accesses the udev
field of the freed object to put the USB device. This may also lead to a
memory leak of the usb device. Fix this by using udev from interface.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing Better UX For Left-Handed People

This week in AI dev tools: Gemini 2.5 Flash-Lite, GitLab Duo Agent Platform beta, and more (July 25, 2025)

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

Trump’s AI plan says a lot about open source – but here’s what it leaves out

Google’s new Search mode puts classic results back on top – how to access it

These AR swim goggles I tested have all the relevant metrics (and no subscription)

Google’s new AI tool Opal turns prompts into apps, no coding required

Laravel Scoped Route Binding for Nested Resource Management

Laravel Scoped Route Binding for Nested Resource Management

Add Reactions Functionality to Your App With Laravel Reactions

saasykit/laravel-open-graphy

Sam Altman won’t trust ChatGPT with his “medical fate” unless a doctor is involved — “Maybe I’m a dinosaur here”

Sam Altman won’t trust ChatGPT with his “medical fate” unless a doctor is involved — “Maybe I’m a dinosaur here”

“It deleted our production database without permission”: Bill Gates called it — coding is too complex to replace software engineers with AI

Top 6 new features and changes coming to Windows 11 in August 2025 — from AI agents to redesigned BSOD screens

CVE-2025-3786 – Tenda AC15 Wireless Repeat Buffer Overflow Vulnerability

Rogue CAPTCHAs: Look out for phony verification pages spreading malware

ToolShell: An all-you-can-eat buffet for threat actors

This Android tablet brings a $1,700 iPad Pro feature to the $400 price point – and it’s nearly as good

CVE-2025-47681 – Ability, Inc Web Accessibility with Max Access CSRF

How to Build a Sustainable Open Source Contribution Routine

The “Infinite Workday” is Here: Microsoft Warns of Never-Ending Work Driven by Hybrid Models & AI

CVE-2025-37796 – “Linux Kernel WiFi at76c50x Use After Free”

CVE-2025-7115 – Rowboatlabs Rowboat Remote Authentication Bypass Vulnerability

Apache Tomcat Patches 4 Flaws: DoS, Privilege Bypass, & Installer Risks Addressed

Navigating Dates Elegantly with Carbon in Laravel

CVE-2025-3786 – Tenda AC15 Wireless Repeat Buffer Overflow Vulnerability

Related Posts