CVE-2025-3802 – Tenda W12 and i24 HTTPd cgiPingSet Stack-Based Buffer Overflow

April 23, 2025

CVE ID : CVE-2025-3802

Published : April 19, 2025, 3:15 p.m. | 3 days, 18 hours ago

Description : A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). It has been declared as critical. This vulnerability affects the function cgiPingSet of the file /bin/httpd. The manipulation of the argument pingIP leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43917 – Pritunl Client Privilege Escalation Vulnerability

Next Article CVE-2025-3404 – “WordPress Download Manager Arbitrary File Deletion Vulnerability”

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

CVE-2025-3802 – Tenda W12 and i24 HTTPd cgiPingSet Stack-Based Buffer Overflow

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

CVE-2025-22237 – SaltStack Minion Remote Command Execution Vulnerability

CVE-2025-4922 – Nomad Prefix-Based ACL Policy Vulnerability (Insufficient ACL Resolution)

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

Microsoft Edge 136 revamps many of the browser’s sections

Firefox’s new Tab Groups might be the solution to your biggest browser problem

Interview with Hamza Tahir: Co-founder and CTO of ZenML

Subject-Driven Image Evaluation Gets Simpler: Google Researchers Introduce REFVNLI to Jointly Score Textual Alignment and Subject Consistency Without Costly APIs

CVE-2025-37730 – Logstash SSL Verification MitM Vulnerability

CVE-2025-3802 – Tenda W12 and i24 HTTPd cgiPingSet Stack-Based Buffer Overflow

Related Posts