Security Advisory

CVE-2025-10838

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-23 04:32:07
Last updated 2025-09-23 19:12:30
Assigner VulDB
State PUBLISHED

Description

A vulnerability was identified in Tenda AC21 16.03.08.16. The affected element is the function sub_45BB10 of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to buffer overflow. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.