CVE-2025-3820 – Tenda W12 and i24 Remote Stack-Based Buffer Overflow

April 23, 2025

CVE ID : CVE-2025-3820

Published : April 19, 2025, 9:15 p.m. | 3 days, 12 hours ago

Description : A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644) and classified as critical. Affected by this issue is the function cgiSysUplinkCheckSet of the file /bin/httpd. The manipulation of the argument hostIp1/hostIp2 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-0618 – FireEye EDR Agent Persistent Denial of Service Vulnerability

Next Article CVE-2025-43917 – Pritunl Client Privilege Escalation Vulnerability

Highlights

CVE-2025-7518 – RSFirewall! WordPress Path Traversal Vulnerability

July 12, 2025

CVE ID : CVE-2025-7518

Published : July 12, 2025, 10:15 a.m. | 8 hours, 26 minutes ago

Description : The RSFirewall! plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.1.42 via the get_local_filename() function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-4121 – Netgear JWNR2000v2 Command Injection Vulnerability

April 30, 2025

CodeSOD: Tangled Up in Foo

April 24, 2025

Response to CISA Advisory (AA25-163A): Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider

June 16, 2025

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

AI-enabled software development: Risk of skill erosion or catalyst for growth?

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Power bank slapped with a recall? Stop using it now – here’s why

I recommend these budget earbuds over pricier Bose and Sony models – here’s why

Microsoft’s big AI update for Windows 11 is here – what’s new

Slow internet speed on Linux? This 30-second fix makes all the difference

Singleton and Scoped Container Attributes in Laravel 12.21

Singleton and Scoped Container Attributes in Laravel 12.21

wulfheart/laravel-actions-ide-helper

lanos/laravel-cashier-stripe-connect

‘Wuchang: Fallen Feathers’ came close to fully breaking me multiple times — a soulslike as brutal and as beautiful as it gets

‘Wuchang: Fallen Feathers’ came close to fully breaking me multiple times — a soulslike as brutal and as beautiful as it gets

Sam Altman is “terrified” of voice ID fraudsters embracing AI — and threats of US bioweapon attacks keep him up at night

NVIDIA boasts a staggering $111 million in market value per employee — since it became the world’s first $4 trillion company

CVE-2025-3820 – Tenda W12 and i24 Remote Stack-Based Buffer Overflow

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Why is your data worth so much? | Unlocked 403 cybersecurity podcast (S2E4)

Everything I know about good system design

Lizard Squad DDoS-for-hire service hacked – users’ details revealed

No-code data preparation for time series forecasting using Amazon SageMaker Canvas

Always deploy at peak traffic

CVE-2025-7518 – RSFirewall! WordPress Path Traversal Vulnerability

CVE-2025-4121 – Netgear JWNR2000v2 Command Injection Vulnerability

CodeSOD: Tangled Up in Foo

Response to CISA Advisory (AA25-163A): Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider

CVE-2025-3820 – Tenda W12 and i24 Remote Stack-Based Buffer Overflow

Related Posts