CVE-2025-12232
Published: 27 October 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-12232 is a buffer overflow vulnerability in Tenda CH22 firmware version 1.0.0.1. The flaw affects the fromSafeClientFilter function in the /goform/SafeClientFilter file, where manipulation of the "page" argument triggers the overflow. Published on 2025-10-27, it carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and maps to CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) and CWE-120 (Buffer Copy without Checking Size of Input).
The vulnerability enables remote exploitation over the network with low complexity and requires only low privileges, such as an authenticated user account, but no user interaction. Attackers can achieve high impacts on confidentiality, integrity, and availability, potentially leading to arbitrary code execution or device compromise.
Advisories provide additional details via VulDB entries (ctiid.329902, id.329902, submit.673713) and a GitHub issue at QIU-DIE/CVE/issues/13, with the vendor site at www.tenda.com.cn/. An exploit is publicly available and may be actively used.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Unauthenticated buffer overflow in /goform/SafeClientFilter enables remote arbitrary code execution or denial of service on the public-facing router web interface.