{"vulnerability": "cve-2025-3802", "sightings": [{"uuid": "0373f49c-7983-44d6-b1f3-b8ffc4a02bb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38026", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lruw4osthk2c", "content": "", "creation_timestamp": "2025-06-18T11:35:07.362758Z"}, {"uuid": "6ac3cec4-53c2-4fa3-93b8-977065caa514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38026", "type": "seen", "source": "https://bsky.app/profile/linux.activitypub.awakari.com.ap.brid.gy/post/3lruw4yh374s2", "content": "", "creation_timestamp": "2025-06-18T11:35:32.176854Z"}, {"uuid": "3f3b6225-9634-4749-8295-2090dfb28644", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-38022", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "08428a27-0b67-42fc-99d5-37191781b4ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3802", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ln6ji7xfih2v", "content": "", "creation_timestamp": "2025-04-19T16:09:35.555938Z"}, {"uuid": "2e20cb7f-fca9-406b-b4ff-b026bf4631b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3802", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114365571675646075", "content": "", "creation_timestamp": "2025-04-19T16:28:54.880184Z"}, {"uuid": "6035df07-b940-4cd1-ac0a-d31eee0532c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3802", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114365884065329964", "content": "", "creation_timestamp": "2025-04-19T17:48:21.584152Z"}, {"uuid": "2e1054c6-3ac0-49e9-8852-19f07e1b24c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38024", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0290/", "content": "", "creation_timestamp": "2026-03-13T00:00:00.000000Z"}, {"uuid": "c43fd0f0-7041-4503-aded-696d493245e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38020", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "ea25078b-aa66-4c6a-b867-b091bec0362a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38022", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "208d9bf5-0781-4fbb-80ac-f60701696fe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38029", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "8671dbac-4c28-41d7-ab3b-71f6af2c25c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38024", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mi2fvy5bw326", "content": "", "creation_timestamp": "2026-03-27T15:15:16.679174Z"}, {"uuid": "5f817e7b-7be2-45b0-9ba5-564764e3c4e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38022", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0397/", "content": "", "creation_timestamp": "2026-04-02T17:00:00.000000Z"}, {"uuid": "7cf52615-5420-480e-8aab-12895c11d288", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38022", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/ubuntu-linux-kernel-multiple-vulnerabilities_20260408", "content": "", "creation_timestamp": "2026-04-07T18:00:00.000000Z"}, {"uuid": "8ff09d8c-fbf4-4274-a62e-895ac0fcb012", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3802", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12583", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3802\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). It has been declared as critical. This vulnerability affects the function cgiPingSet of the file /bin/httpd. The manipulation of the argument pingIP leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-04-19T14:31:05.921Z\n\ud83d\udccf Modified: 2025-04-19T14:31:05.921Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.305656\n2. https://vuldb.com/?ctiid.305656\n3. https://vuldb.com/?submit.554746\n4. https://github.com/02Tn/vul/issues/2\n5. https://www.tenda.com.cn/", "creation_timestamp": "2025-04-19T14:59:55.000000Z"}, {"uuid": "1c97fed7-987d-46f4-affd-e7681fd34bed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38022", "type": "seen", "source": "Telegram/VAb3zzagTn6lQbft5tz1fytQ8Ohgykhy9DuLCcxvkLhSx6o", "content": "", "creation_timestamp": "2026-01-11T18:01:59.000000Z"}, {"uuid": "c0c25bdf-1cdc-4838-9983-479d16cbc404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38022", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/ubuntu-linux-kernel-multiple-vulnerabilities_20260511", "content": "", "creation_timestamp": "2026-05-10T18:00:00.000000Z"}, {"uuid": "d05764d4-6b89-4166-a640-8f08940ffa3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3802", "type": "seen", "source": "https://t.me/cvedetector/23387", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-3802 - Tenda W12 and i24 HTTPd cgiPingSet Stack-Based Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2025-3802 \nPublished : April 19, 2025, 3:15 p.m. | 1\u00a0hour, 40\u00a0minutes ago \nDescription : A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). It has been declared as critical. This vulnerability affects the function cgiPingSet of the file /bin/httpd. The manipulation of the argument pingIP leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-19T19:19:36.000000Z"}, {"uuid": "7f530ff1-40ef-4aab-8026-a5a5a33ecb40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38024", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mkpqzirw6z2a", "content": "\ud83d\udd17 CVE : CVE-2022-50053, CVE-2023-53539, CVE-2025-38024, CVE-2025-38180, CVE-2025-68741, CVE-2025-71238, CVE-2026-23001, CVE-2026-23097, CVE-2026-23111, CVE-2026-23193, CVE-2026-23204, CVE-2026-23216, CVE-2026-23231, CVE-2026-31402", "creation_timestamp": "2026-04-30T13:50:24.493980Z"}, {"uuid": "02151d3c-a5e2-4b62-a00d-8a5d06dee7a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38024", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmgyqvvbua2x", "content": "\ud83d\udd17 CVE : CVE-2025-21999, CVE-2025-38024, CVE-2025-71238, CVE-2026-23191, CVE-2026-23243, CVE-2026-23401, CVE-2026-31419, CVE-2026-31532, CVE-2026-43284, CVE-2026-46300, CVE-2026-46333", "creation_timestamp": "2026-05-22T13:05:11.185509Z"}]}