{"vulnerability": "cve-2025-2913", "sightings": [{"uuid": "e3953df8-13af-474f-b512-5d730cbfc27e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lkrbxs7gvi2t", "content": "", "creation_timestamp": "2025-03-19T23:00:11.617019Z"}, {"uuid": "01ec5d24-2f53-490e-a7a3-20f0bddd0e25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lksk77x2he2t", "content": "", "creation_timestamp": "2025-03-20T11:00:09.372966Z"}, {"uuid": "2b87be11-a49c-47a7-90b1-5e2b251a6319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114191532041528794", "content": "", "creation_timestamp": "2025-03-19T22:48:21.242225Z"}, {"uuid": "152593f8-299d-41f3-a57f-0b01cd9576e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:27.000000Z"}, {"uuid": "c87de921-e6d8-43f9-b0bd-e1067d7f7723", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkqtncb32b26", "content": "", "creation_timestamp": "2025-03-19T18:43:48.280507Z"}, {"uuid": "ad53fc1b-0950-4454-8238-d4f9319e308e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8163", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-29137\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Tenda AC7 V1.0 V15.03.06.44 found a buffer overflow caused by the timeZone parameter in the form_fast_setting_wifi_set function, which can cause RCE.\n\ud83d\udccf Published: 2025-03-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-19T20:44:09.904Z\n\ud83d\udd17 References:\n1. https://github.com/Raining-101/IOT_cve/blob/main/tenda-ac7form_fast_setting_wifi_set%20timeZone.md", "creation_timestamp": "2025-03-19T21:18:39.000000Z"}, {"uuid": "ab9397a8-2284-4ecd-9081-f8b4f44892da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:27.000000Z"}, {"uuid": "f550fc8f-b627-4575-b810-fd025342bded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29135", "type": "seen", "source": "https://t.me/cvedetector/21011", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29135 - Tenda AC7 Stack-Based Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-29135 \nPublished : March 24, 2025, 9:15 p.m. | 2\u00a0hours, 7\u00a0minutes ago \nDescription : A stack-based buffer overflow vulnerability in Tenda AC7 V15.03.06.44 allows a remote attacker to execute arbitrary code through a stack overflow attack using the security parameter of the formWifiBasicSet function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-25T01:05:49.000000Z"}, {"uuid": "d0bef818-abc3-459b-bd74-6baff0c5d2fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29135", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8558", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-29135\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A stack-based buffer overflow vulnerability in Tenda AC7 V15.03.06.44 allows a remote attacker to execute arbitrary code through a stack overflow attack using the security parameter of the formWifiBasicSet function.\n\ud83d\udccf Published: 2025-03-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-24T20:42:53.302Z\n\ud83d\udd17 References:\n1. https://github.com/Raining-101/IOT_cve/blob/main/a7_formWifiBasic_Setsecurity_stackoverflow.md\n2. https://gist.github.com/Raining-101/1651dd3901efdbb38d94a156a54bbc62", "creation_timestamp": "2025-03-24T21:23:43.000000Z"}, {"uuid": "619442f2-2d11-45cb-b319-1dc820eccbec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2913", "type": "seen", "source": "https://t.me/cvedetector/21459", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2913 - HDF5 Use After Free Local Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2913 \nPublished : March 28, 2025, 5:15 p.m. | 1\u00a0hour, 18\u00a0minutes ago \nDescription : A vulnerability was found in HDF5 up to 1.14.6. It has been rated as problematic. Affected by this issue is the function H5FL__blk_gc_list of the file src/H5FL.c. The manipulation of the argument H5FL_blk_head_t leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. \nSeverity: 3.3 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-28T20:16:02.000000Z"}, {"uuid": "65273605-c5ea-4759-bff8-b5638c28372d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29137", "type": "seen", "source": "https://t.me/cvedetector/20649", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29137 - Tenda AC7 Buffer Overflow RCE\", \n  \"Content\": \"CVE ID : CVE-2025-29137 \nPublished : March 19, 2025, 4:15 p.m. | 1\u00a0hour, 11\u00a0minutes ago \nDescription : Tenda AC7 V1.0 V15.03.06.44 found a buffer overflow caused by the timeZone parameter in the form_fast_setting_wifi_set function, which can cause RCE. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-19T18:49:24.000000Z"}]}