VDB-311673 · CVE-2025-5900 · EUVD-2025-17585

Tenda AC9 15.03.02.13 କ୍ରସ୍ ସାଇଟ୍ ଅନୁରୋଧ ଜାଲିଆତି

Rakkoon nageenyaa kan ସମସ୍ୟାଜନକ jedhamuun beekamu Tenda AC9 15.03.02.13 keessatti argameera. Kan miidhamte is hojii hin beekamne. Hojii jijjiirraa gara କ୍ରସ୍ ସାଇଟ୍ ଅନୁରୋଧ ଜାଲିଆତି geessa. CWE fayyadamuun rakkoo ibsuun gara CWE-352 geessa. Dadhabbii kana yeroo 06/09/2025 maxxanfameera. Odeeffannoon kun buufachuuf candle-throne-f75.notion.site irratti qoodameera. Dogoggorri kun akka CVE-2025-5900tti beekama. Yaaliin weeraraa fageenya irraa jalqabamuu ni danda'a. Faayidaaleen teeknikaa hin jiru. Waliigalatti, meeshaa balaa kana fayyadamuuf jiru. Qorannoo miidhaa (exploit) uummataaf ifoomameera fi fayyadamamuu danda'a. Amma, gatii ammee exploit might be approx. USD $0-$5k ta'uu danda'a. Akka ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee ibsameera. Carraa exploit kana candle-throne-f75.notion.site irraa buufachuun ni danda'ama. Akka 0-daytti, gatii daldalaa dhoksaa tilmaamame $0-$5k ta'ee ture. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

3 ଆଡାପ୍ଟେସନ୍ · 96 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 06/09/2025 09:47 AM	ଅଦ୍ୟତନ 1/2 06/10/2025 02:14 AM	ଅଦ୍ୟତନ 2/2 06/16/2025 04:57 PM
exploit_publicity	1	1	1
exploit_url	https://candle-throne-f75.notion.site/Tenda-AC9-fromSysToolRestoreSet-20adf0aa11858094a25ae21f9b4203da	https://candle-throne-f75.notion.site/Tenda-AC9-fromSysToolRestoreSet-20adf0aa11858094a25ae21f9b4203da	https://candle-throne-f75.notion.site/Tenda-AC9-fromSysToolRestoreSet-20adf0aa11858094a25ae21f9b4203da
source_cve	CVE-2025-5900	CVE-2025-5900	CVE-2025-5900
cna_responsible	VulDB	VulDB	VulDB
software_type	Router Operating System	Router Operating System	Router Operating System
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	L	L	L
cvss2_vuldb_au	N	N	N
cvss2_vuldb_ci	N	N	N
cvss2_vuldb_ii	P	P	P
cvss2_vuldb_ai	N	N	N
cvss2_vuldb_e	POC	POC	POC
cvss2_vuldb_rc	UR	UR	UR
cvss4_vuldb_av	N	N	N
cvss4_vuldb_ac	L	L	L
cvss4_vuldb_pr	N	N	N
cvss4_vuldb_ui	P	P	P
cvss4_vuldb_vc	N	N	N
cvss4_vuldb_vi	L	L	L
cvss4_vuldb_va	N	N	N
cvss4_vuldb_e	P	P	P
cvss2_vuldb_rl	ND	ND	ND
cvss3_vuldb_rl	X	X	X
cvss4_vuldb_at	N	N	N
cvss4_vuldb_sc	N	N	N
cvss4_vuldb_si	N	N	N
cvss4_vuldb_sa	N	N	N
cvss2_vuldb_basescore	5.0	5.0	5.0
cvss2_vuldb_tempscore	4.3	4.3	4.3
cvss3_vuldb_basescore	4.3	4.3	4.3
cvss3_vuldb_tempscore	3.9	3.9	3.9
cvss3_meta_basescore	4.3	4.3	5.2
cvss3_meta_tempscore	3.9	3.9	5.1
cvss4_vuldb_bscore	5.3	5.3	5.3
cvss4_vuldb_btscore	2.1	2.1	2.1
advisory_date	1749420000 (06/09/2025)	1749420000 (06/09/2025)	1749420000 (06/09/2025)
price_0day	$0-$5k	$0-$5k	$0-$5k
software_vendor	Tenda	Tenda	Tenda
software_name	AC9	AC9	AC9
software_version	15.03.02.13	15.03.02.13	15.03.02.13
vulnerability_cwe	CWE-352 (କ୍ରସ୍ ସାଇଟ୍ ଅନୁରୋଧ ଜାଲିଆତି)	CWE-352 (କ୍ରସ୍ ସାଇଟ୍ ଅନୁରୋଧ ଜାଲିଆତି)	CWE-352 (କ୍ରସ୍ ସାଇଟ୍ ଅନୁରୋଧ ଜାଲିଆତି)
vulnerability_risk	1	1	1
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	N	N	N
cvss3_vuldb_ui	R	R	R
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	N	N	N
cvss3_vuldb_i	L	L	L
cvss3_vuldb_a	N	N	N
cvss3_vuldb_e	P	P	P
cvss3_vuldb_rc	R	R	R
advisory_url	https://candle-throne-f75.notion.site/Tenda-AC9-fromSysToolReboot-20adf0aa1185806a9d20ee5c355c08a6?pvs=73	https://candle-throne-f75.notion.site/Tenda-AC9-fromSysToolReboot-20adf0aa1185806a9d20ee5c355c08a6?pvs=73	https://candle-throne-f75.notion.site/Tenda-AC9-fromSysToolReboot-20adf0aa1185806a9d20ee5c355c08a6?pvs=73
exploit_availability	1	1	1
euvd_id		EUVD-2025-17585	EUVD-2025-17585
cve_nvd_summary			A vulnerability, which was classified as problematic, was found in Tenda AC9 15.03.02.13. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
cve_nvd_summaryes			Se encontró una vulnerabilidad clasificada como problemática en Tenda AC9 15.03.02.13. Esta afecta a una parte desconocida. La manipulación provoca cross-site request forgery. Es posible iniciar el ataque de forma remota. Se ha hecho público el exploit y puede que sea utilizado.
cvss4_cna_av			N
cvss4_cna_ac			L
cvss4_cna_at			N
cvss4_cna_pr			N
cvss4_cna_ui			P
cvss4_cna_vc			N
cvss4_cna_vi			L
cvss4_cna_va			N
cvss4_cna_sc			N
cvss4_cna_si			N
cvss4_cna_sa			N
cvss4_cna_bscore			5.3
cvss3_cna_av			N
cvss3_cna_ac			L
cvss3_cna_pr			N
cvss3_cna_ui			R
cvss3_cna_s			U
cvss3_cna_c			N
cvss3_cna_i			L
cvss3_cna_a			N
cvss3_cna_basescore			4.3
cvss3_nvd_av			N
cvss3_nvd_ac			L
cvss3_nvd_pr			N
cvss3_nvd_ui			R
cvss3_nvd_s			U
cvss3_nvd_c			N
cvss3_nvd_i			L
cvss3_nvd_a			H
cvss3_nvd_basescore			7.1
cvss2_cna_av			N
cvss2_cna_ac			L
cvss2_cna_au			N
cvss2_cna_ci			N
cvss2_cna_ii			P
cvss2_cna_ai			N
cvss2_cna_basescore			5

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Do you know our Splunk app?

Download it now for free!