CVE-2025-3803 – Tenda W12 and i24 Stack-Based Buffer Overflow Vulnerability

April 23, 2025

CVE ID : CVE-2025-3803

Published : April 19, 2025, 3:15 p.m. | 3 days, 18 hours ago

Description : A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). It has been rated as critical. This issue affects the function cgiSysScheduleRebootSet of the file /bin/httpd. The manipulation of the argument rebootDate leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43917 – Pritunl Client Privilege Escalation Vulnerability

Next Article CVE-2025-3404 – “WordPress Download Manager Arbitrary File Deletion Vulnerability”

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Development Release: KDE Linux 20250906

Hitachi Energy Pledges $1B to Strengthen US Grid, Build Largest Transformer Plant in Virginia

How to debug a web app with Playwright MCP and GitHub Copilot

Between Strategy and Story: Thierry Chopain’s Creative Path

Health Monitoring Android App using SQLite

Health Monitoring Android App using SQLite

Convertedbook – Live LaTeX Preview in the Browser

Why browsers throttle JavaScript timers (and what to do about it)

Development Release: KDE Linux 20250906

Development Release: KDE Linux 20250906

Harnessing GitOps on Linux for Seamless, Git-First Infrastructure Management

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

CVE-2025-3803 – Tenda W12 and i24 Stack-Based Buffer Overflow Vulnerability

Under lock and key: Safeguarding business data with encryption

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

CVE-2025-40726 – Nosto Reflected Cross-Site Scripting (XSS)

SEO in the Age of AI: Should Marketers Defend or Discover?

IBM’s MCP Gateway: A Unified FastAPI-Based Model Context Protocol Gateway for Next-Gen AI Toolchains

Cybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind

CVE-2025-55188 – 7-Zip Symbolic Link Extraction Vulnerability

MediaTek May 2025 Security Bulletin: Chipset Vulnerabilities Disclosed

Windows 11’s Android (WSA) finally loses support, but can you still install it?

From drop-out to backpacker to self-taught developer with Dominick Monaco [Podcast #183]

CVE-2025-3803 – Tenda W12 and i24 Stack-Based Buffer Overflow Vulnerability

Related Posts