A vulnerability was found in Tenda O3V2 1.0.0.12(3880) and classified as critical. Affected by this issue is the function fromPingResultGet of the file /goform/setPing of the component httpd. The manipulation of the argument destIP leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Metrics
Affected Vendors & Products
References
History
Fri, 11 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
Thu, 10 Jul 2025 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in Tenda O3V2 1.0.0.12(3880) and classified as critical. Affected by this issue is the function fromPingResultGet of the file /goform/setPing of the component httpd. The manipulation of the argument destIP leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | |
Title | Tenda O3V2 httpd setPing fromPingResultGet stack-based overflow | |
Weaknesses | CWE-119 CWE-121 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published: 2025-07-10T22:32:07.119Z
Updated: 2025-07-10T22:32:07.119Z
Reserved: 2025-07-10T07:48:35.590Z
Link: CVE-2025-7418

No data.

Status : Received
Published: 2025-07-10T23:15:27.967
Modified: 2025-07-10T23:15:27.967
Link: CVE-2025-7418

No data.