Tenda CH22 DhcpListClient fromDhcpListClient denial of service_CVE-2025-15229

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in Tenda CH22 up to 1.0.0.1. Affected by this vulnerability is the function fromDhcpListClient of the file /goform/DhcpListClient. Such manipulation of the argument LISTLEN leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Basic Information

ID CVE-2025-15229

Source VulDB

Published Dec 30, 2025 at 06:02

Affected Product

Vendor Tenda

Product CH22

Version 1.0.0.0

Affected Versions Tenda CH22 1.0.0.0
Tenda CH22 1.0.0.1

CWE Classification

CWE-404

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in Tenda CH22 up to 1.0.0.1. Affected by this vulnerability is the function fromDhcpListClient of the file /goform/DhcpListClient. Such manipulation of the argument LISTLEN leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.",
    "published": "2025-12-30T06:02:07.970Z",
    "modified": "2025-12-30T06:02:07.970Z",
    "type": "cve",
    "title": "Tenda CH22 DhcpListClient fromDhcpListClient denial of service",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.338625\nhttps://vuldb.com/?ctiid.338625\nhttps://vuldb.com/?submit.725472\nhttps://github.com/master-abc/cve/issues/7\nhttps://www.tenda.com.cn/",
    "id": "CVE-2025-15229",
    "bulletinFamily": "",
    "cwe": [
        "CWE-404"
    ],
    "cvelist": null,
    "sourceData": "Tenda CH22 1.0.0.0\nTenda CH22 1.0.0.1",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "CH22",
    "version": "1.0.0.0",
    "vendor": "Tenda",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}