CVE Daily

CVE-2025-8980

A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this iss...

Medium CVSS 6.6

Overview

A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this issue is the function check_upload_file of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

CWE: CWE-345 Published: 2025-08-14T20:15:38.397
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.6 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags