How severe is CVE-2025-7415?

CVE-2025-7415 has a CVSS v3 score of 6.3 (MEDIUM).

CVE-2025-7415

Name: o3
Author: tenda

6.3MEDIUM

A vulnerability, which was classified as critical, has been found in Tenda O3V2 1.0.0.12(3880). This issue affects the function fromTraceroutGet of the file /goform/getTraceroute of the component http

Veröffentlicht: 7/10/2025Aktualisiert: 7/16/2025

Beschreibung

A vulnerability, which was classified as critical, has been found in Tenda O3V2 1.0.0.12(3880). This issue affects the function fromTraceroutGet of the file /goform/getTraceroute of the component httpd. The manipulation of the argument dest leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

KI-AnalyseKI-gestützt

Betroffene Produkte

tendao3_firmware

1.0.0.12\(3880\)

tendao3

2.0

Referenzen

https://github.com/wudipjq/my_vuln/blob/main/Tenda3/vuln_48/48.md
ExploitThird Party Advisory
https://github.com/wudipjq/my_vuln/blob/main/Tenda3/vuln_48/48.md#poc
ExploitThird Party Advisory
https://vuldb.com/?ctiid.315875
Permissions RequiredVDB Entry
https://vuldb.com/?id.315875
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.608856
Third Party AdvisoryVDB Entry
https://www.tenda.com.cn/
Product