CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-29135

A stack-based buffer overflow vulnerability in Tenda AC7 V15.03.06.44 allows a remote attacker to execute arbitrary code through a stack overflow attack using the security parameter of the formWifiBasicSet function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.4%

CVSS Severity

CVSS v3 Score 9.8

References

https://gist.github.com/Raining-101/1651dd3901efdbb38d94a156a54bbc62
https://github.com/Raining-101/IOT_cve/blob/main/a7_formWifiBasic_Setsecurity_stackoverflow.md
https://github.com/Raining-101/IOT_cve/blob/main/a7_formWifiBasic_Setsecurity_stackoverflow.md

Products affected by CVE-2025-29135

Tenda » Ac7 » Version: 1.0

cpe:2.3:h:tenda:ac7:1.0
Tenda » Ac7 Firmware » Version: 15.03.06.44

cpe:2.3:o:tenda:ac7_firmware:15.03.06.44

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-29135

Products

Pricing

Contact Us