CVE-2025-4356 – Tenda DAP-1520 Stack-Based Buffer Overflow in Authentication Handler

May 6, 2025

CVE ID : CVE-2025-4356

Published : May 6, 2025, 2:15 p.m. | 44 minutes ago

Description : A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been declared as critical. This vulnerability affects the function mod_graph_auth_uri_handler of the file /storage of the component Authentication Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4357 – Tenda RX3 Command Injection Vulnerability

Next Article CVE-2025-4354 – Tenda DAP-1520 Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-5685 – Tenda CH22 Stack-Based Buffer Overflow Vulnerability

June 5, 2025

CVE ID : CVE-2025-5685

Published : June 5, 2025, 8:15 p.m. | 1 hour, 52 minutes ago

Description : A vulnerability, which was classified as critical, was found in Tenda CH22 1.0.0.1. This affects the function formNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

Melissa brings its data quality solutions to Azure with new SSIS integration

Automating Design Systems: Tips And Resources For Getting Started

This $180 mini projector has no business being this good for the price

GPT-5 is finally here, and you can access it for free today – no subscription needed

Changing this Android setting instantly doubled my phone speed (Samsung and Google models included)

ChatGPT can now talk nerdy to you – plus more personalities and other upgrades beyond GPT-5

Advanced Application Architecture through Laravel’s Service Container Management

Advanced Application Architecture through Laravel’s Service Container Management

Switch Between Personas in Laravel With the MultiPersona Package

AI-Driven Smart Tagging and Metadata in AEM Assets

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Halo Infinite’s Fall Update: New Features and Modes to Revive the Game?

Forza Motorsport’s Future in Jeopardy: Fans Demand Clarity from Microsoft

CVE-2025-4356 – Tenda DAP-1520 Stack-Based Buffer Overflow in Authentication Handler

Microsoft to Pull Plug on Shared EWS Access in Hybrid Exchange by October

Google Confirms Salesforce Database Breach by ShinyHunters Group

April 2025 Baseline monthly digest

Vulnerable firmware for Gigabyte motherboards could allow bootkit installation

CVE-2025-4358 – PHPGurukul Company Visitor Management System SQL Injection Vulnerability

How to Integrate Machine Learning with WordPress

CVE-2025-5685 – Tenda CH22 Stack-Based Buffer Overflow Vulnerability

Asus echoes Microsoft, says dump Windows 10 for Windows 11 ASAP

CVE-2025-45009 – PHPGurukul Park Ticketing Management System HTML Injection

CVE-2025-6567 – Campcodes Online Recruitment Management System SQL Injection

CVE-2025-4356 – Tenda DAP-1520 Stack-Based Buffer Overflow in Authentication Handler

Related Posts