CVE-2025-7414 – Tenda O3V2 HTTPd Os Command Injection Vulnerability

July 10, 2025

CVE ID : CVE-2025-7414

Published : July 10, 2025, 9:15 p.m. | 1 hour, 24 minutes ago

Description : A vulnerability classified as critical was found in Tenda O3V2 1.0.0.12(3880). This vulnerability affects the function fromNetToolGet of the file /goform/setPingInfo of the component httpd. The manipulation of the argument domain leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7415 – Tenda O3V2 HTTPd Command Injection Vulnerability

Next Article CVE-2025-6390 – Brocade SANnav Password Storage Vulnerability

Vibe Loop: AI-native reliability engineering for the real world

Docker Compose gets new features for building and running agents

Why Enterprises Are Choosing AI-Driven React.js Development Companies in 2025

Unmasking The Magic: The Wizard Of Oz Method For UX Research

This Asus portable monitor transformed my remote work setup (and it’s only $170)

This Android tablet is the best I’ve tested all year – and it’s currently on sale

Three.js Instances: Rendering Multiple Objects Simultaneously

Netflix Tudum Architecture: from CQRS with Kafka to CQRS with RAW Hollow

Salesforce Health Cloud Demo: Provider Search & Network Management in Action

Salesforce Health Cloud Demo: Provider Search & Network Management in Action

Oracle Cloud EPM: Transitioning to Forms 2.0, Dashboards 2.0 by October 2025

This Week in Laravel: React.js, Filament vs Laravel, and Junior Test

Windows 11’s Patch Tuesday update fixes annoying Firewall error log

Windows 11’s Patch Tuesday update fixes annoying Firewall error log

Microsoft Teams channels get threaded replies, emoji-powered workflows, and more

How to Login Into Spectrum Email: Full Guide for Former Time Warner & Charter

CVE-2025-7414 – Tenda O3V2 HTTPd Os Command Injection Vulnerability

CVE-2025-53506 – Apache Tomcat HTTP/2 Uncontrolled Resource Consumption Denial of Service

CVE-2025-45662 – Mpgram Web XSS Vulnerability

CVE-2025-4546 – A vulnerability was found in 1Panel-dev MaxKB up t

CVE-2025-3826 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

CVE-2025-5528 – WordPress Sassy Social Share Reflected Cross-Site Scripting Vulnerability

CVE-2025-6653 – PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure

Snowflake Proposes ExCoT: A Novel AI Framework that Iteratively Optimizes Open-Source LLMs by Combining CoT Reasoning with off-Policy and on-Policy DPO, Relying Solely on Execution Accuracy as Feedback

CVE-2025-5365 – Campcodes Online Hospital Management System SQL Injection Vulnerability

Can LLMs Debug Like Humans? Microsoft Introduces Debug-Gym for AI Coding Agents

Commvault Updates Security Advisory After Nation-State Threat Actor Activity in Azure

CVE-2025-7414 – Tenda O3V2 HTTPd Os Command Injection Vulnerability

Related Posts