Vulnerabilities > CVE-2025-3167 - Unspecified vulnerability in Tenda Ac23 Firmware 16.03.07.52

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

tenda

NVD

Published: 2025-04-03

Updated: 2025-04-08

Summary

A vulnerability, which was classified as problematic, has been found in Tenda AC23 16.03.07.52. This issue affects some unknown processing of the file /goform/VerAPIMant of the component API Interface. The manipulation of the argument getuid leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Vulnerable Configurations

Part	Description	Count
OS	Tenda Tenda Ac23 Firmware 16.03.07.52	1
Hardware	Tenda Tenda Ac23 -	1

References

https://github.com/LZY0522/CVE/blob/main/CVE_1.md
https://github.com/LZY0522/CVE/blob/main/CVE_1.md
https://vuldb.com/?ctiid.303113
https://vuldb.com/?id.303113
https://vuldb.com/?submit.543150
https://www.tenda.com.cn/