CVE-2025-4356 – Tenda DAP-1520 Stack-Based Buffer Overflow in Authentication Handler

May 6, 2025

CVE ID : CVE-2025-4356

Published : May 6, 2025, 2:15 p.m. | 44 minutes ago

Description : A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been declared as critical. This vulnerability affects the function mod_graph_auth_uri_handler of the file /storage of the component Authentication Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4357 – Tenda RX3 Command Injection Vulnerability

Next Article CVE-2025-4354 – Tenda DAP-1520 Stack-Based Buffer Overflow Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

DistroWatch Weekly, Issue 1127

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Understanding JavaScript Promise

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

I used Lenovo’s latest dual-screen OLED laptop for a month and it wouldn’t be my first choice — here’s why

Here’s how I fixed a dead Steam Deck screen — with Valve proving they still have the best customer service in gaming

Borderlands 4 drops stunning new story trailer

CVE-2025-4356 – Tenda DAP-1520 Stack-Based Buffer Overflow in Authentication Handler

CVE-2025-52926 – Spytrap-ADB Stalkerware Detection UI Vulnerability

CVE-2025-6497 – “HTACG Tidy-html5 Assertion Vulnerability”

CISA warns of ConnectWise ScreenConnect bug exploited in attacks

CVE-2025-1793 – AWS Run-llama SQL Injection Vulnerability

KTrip is a public transport navigator

CVE-2025-2802 – WordPress LayoutBoxx Plugin Shortcode Execution Vulnerability

Community News: Latest PEAR Releases (03.10.2025)

CVE-2025-5568 – WordPress WpEvently Stored Cross-Site Scripting

Cinecred creates film credits without the pain

Firefox Lets Users Remove On-Device AI Models for Smart Tab Grouping, Link Previews & More

CVE-2025-4356 – Tenda DAP-1520 Stack-Based Buffer Overflow in Authentication Handler

Related Posts