CVE-2025-8017 – Tenda AC7 HTTPd Stack-Based Buffer Overflow Vulnerability

July 22, 2025

CVE ID : CVE-2025-8017

Published : July 22, 2025, 2:15 p.m. | 10 hours, 29 minutes ago

Description : A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-51865 – Allenai Ai2 Playground Web Service IDOR

Next Article CVE-2015-10140 – WordPress Ajax Load More Unauthenticated File Upload/Deletion Vulnerability

This week in AI updates: Mistral’s new Le Chat features, ChatGPT updates, and more (September 5, 2025)

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Development Release: KDE Linux 20250906

Hitachi Energy Pledges $1B to Strengthen US Grid, Build Largest Transformer Plant in Virginia

How to debug a web app with Playwright MCP and GitHub Copilot

Between Strategy and Story: Thierry Chopain’s Creative Path

Health Monitoring Android App using SQLite

Health Monitoring Android App using SQLite

Convertedbook – Live LaTeX Preview in the Browser

Why browsers throttle JavaScript timers (and what to do about it)

Speed Isn’t Everything When Buying SSDs – Here’s What Really Matters!

Speed Isn’t Everything When Buying SSDs – Here’s What Really Matters!

14 Themes for Beautifying Your Ghostty Terminal

Development Release: KDE Linux 20250906

CVE-2025-8017 – Tenda AC7 HTTPd Stack-Based Buffer Overflow Vulnerability

Under lock and key: Safeguarding business data with encryption

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

This AI Paper Introduces FASTCURL: A Curriculum Reinforcement Learning Framework with Context Extension for Efficient Training of R1-like Reasoning Models

CVE-2025-50340 – SOGo Webmail IDOR Email Spoofing

Volatility in Google Search April 2025 after March core update

GitHub Availability Report: March 2025

CVE-2025-41653 – Citrix Web Server Denial of Service

The best ad blockers of 2025: Clean up your browsing experience

Building a multimodal RAG based application using Amazon Bedrock Data Automation and Amazon Bedrock Knowledge Bases

An Advanced Coding Implementation: Mastering Browser‑Driven AI in Google Colab with Playwright, browser_use Agent & BrowserContext, LangChain, and Gemini

CVE-2025-8017 – Tenda AC7 HTTPd Stack-Based Buffer Overflow Vulnerability

Related Posts