Security Advisory

CVE-2025-12611

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-03 02:02:09

Last updated 2026-02-24 06:21:50

Assigner VulDB

State PUBLISHED

Description

A vulnerability was identified in Tenda AC21 16.03.08.16. This vulnerability affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg. The manipulation of the argument startIp leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

← Browse all CVEs View on cve.org ↗