Security Advisory

CVE-2025-63834

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-10 00:00:00

Last updated 2025-12-01 19:16:27

Assigner mitre

State PUBLISHED

Description

A stored cross-site scripting (XSS) vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. The vulnerability exists in the ssid parameter of the wireless settings. Remote attackers can inject malicious payloads that execute when any user visits the routers homepage.

← Browse all CVEs View on cve.org ↗