VYPR
Unrated severityNVD Advisory· Published Oct 7, 2025· Updated Feb 24, 2026

Tenda AC23 SetStaticRouteCfg sscanf buffer overflow

CVE-2025-11356

Description

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and could be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Tenda/AC23cpe-rescue2 versions
    cpe:2.3:o:tenda:ac23_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:tenda:ac23_firmware:*:*:*:*:*:*:*:*range: 16.03.07.0
    • (no CPE)range: <=16.03.07.52

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.