CVE-2025-12210
BaseFortify
Publication date: 2025-10-27
Last updated on: 2025-10-28
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | o3_firmware1.0.0.10\(2478\) | * |
| tenda | o3 | 2.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-12210 is a stack-based buffer overflow vulnerability in the Tenda O3 router firmware version 1.0.0.10(2478). It occurs in the SetValue/GetValue functions of the /goform/AdvSetLanip endpoint when handling the 'lanIp' parameter. By manipulating this parameter with crafted input, an attacker can cause a stack overflow, potentially leading to arbitrary code execution or denial of service. The vulnerability can be exploited remotely without local access, and a public exploit is available. [1, 2]
How can this vulnerability impact me? :
This vulnerability can impact you by allowing a remote attacker to execute arbitrary code or cause a denial of service on the affected Tenda O3 router. This compromises the confidentiality, integrity, and availability of the device, potentially allowing unauthorized control or disruption of network services. Since the exploit is publicly available and easy to execute, the risk is significant. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by monitoring or testing the /goform/AdvSetLanip endpoint on Tenda O3 routers running firmware version 1.0.0.10(2478). Since the vulnerability is triggered by manipulation of the 'lanIp' parameter causing a stack-based buffer overflow, detection can involve sending crafted requests to this endpoint and observing abnormal behavior or crashes. Specific detection commands are not provided in the resources, but network scanning tools or custom scripts targeting the /goform/AdvSetLanip endpoint with malformed 'lanIp' parameters could be used to identify vulnerable devices. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected Tenda O3 device running firmware version 1.0.0.10(2478) as no official patches or fixes are available. Since the exploit is publicly available and the vulnerability is remotely exploitable, limiting network exposure of the device, such as restricting access to the /goform/AdvSetLanip endpoint via firewall rules or network segmentation, can reduce risk. Monitoring for unusual activity and disabling remote management features if possible are also advisable. [2]