{"vulnerability": "cve-2025-3820", "sightings": [{"uuid": "bcddf5fd-afdf-4ff9-9ee6-984e7dbb2675", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3lnccbbnbbm2i", "content": "", "creation_timestamp": "2025-04-21T04:11:05.016628Z"}, {"uuid": "c3d5d1dc-c489-4427-b634-c2ccbcc3409e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/114365904488230965", "content": "", "creation_timestamp": "2025-04-19T17:53:32.929187Z"}, {"uuid": "dd91310f-47d0-49b4-8450-b6e276e1a254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114367299815626452", "content": "", "creation_timestamp": "2025-04-19T23:48:24.420812Z"}, {"uuid": "11746728-b8da-4646-a6eb-2a10d308038a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ln7ebf4unw2b", "content": "", "creation_timestamp": "2025-04-20T00:08:56.667288Z"}, {"uuid": "a3cfcd5b-dafe-4d14-9205-549a44716ca7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ln7iarrrlph2", "content": "", "creation_timestamp": "2025-04-20T01:20:21.868228Z"}, {"uuid": "5b344c56-30bb-424d-956b-c340def23f89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38207", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/114795569816587848", "content": "", "creation_timestamp": "2025-07-04T15:03:05.513841Z"}, {"uuid": "9cd997f3-2032-49dd-8ddf-197131f06218", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-38209", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/114795622795462544", "content": "", "creation_timestamp": "2025-07-04T15:16:33.962876Z"}, {"uuid": "cd1f69ef-8f77-40b8-a482-5f6593710203", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38202", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "962614b6-185a-4ada-9cc7-af4eac262225", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38206", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0290/", "content": "", "creation_timestamp": "2026-03-13T00:00:00.000000Z"}, {"uuid": "7c2ef3a8-7aa9-4016-b6a4-d53c3cd4f6e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-38207", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "bfe05df1-a352-4d9f-bac2-f21e4ebe09b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-38208", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "43e8c84f-d256-4e7d-8de5-e9ddee788564", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38201", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities_20260316", "content": "", "creation_timestamp": "2026-03-16T03:00:00.000000Z"}, {"uuid": "8f89c4bf-cde8-40ea-8032-c8987e14b15e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38201", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "ac6c845b-c632-4596-bd49-597503691f83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38205", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "b5b765df-9e82-409e-8bfa-6f2139182466", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38207", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "2c5ff4c7-ccd4-45f4-8884-49af1d7276f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38206", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/redhat-linux-kernel-multiple-vulnerabilities_20260401", "content": "", "creation_timestamp": "2026-03-31T20:00:00.000000Z"}, {"uuid": "84a088b7-e88c-4854-a65b-5139538aba38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38208", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "c4cb3790-e064-4694-8ad2-06e3db2e0263", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-38201", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0291/", "content": "", "creation_timestamp": "2026-03-13T00:00:00.000000Z"}, {"uuid": "98874f9c-f848-4c76-8b06-efeb4e72dab4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12597", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3820\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644) and classified as critical. Affected by this issue is the function cgiSysUplinkCheckSet of the file /bin/httpd. The manipulation of the argument hostIp1/hostIp2 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-04-19T20:31:06.957Z\n\ud83d\udccf Modified: 2025-04-19T20:31:06.957Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.305726\n2. https://vuldb.com/?ctiid.305726\n3. https://vuldb.com/?submit.555728\n4. https://github.com/02Tn/vul/issues/4\n5. https://www.tenda.com.cn/", "creation_timestamp": "2025-04-19T20:59:58.000000Z"}, {"uuid": "c5771d0f-4a13-472a-82c6-ca25a7481123", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "seen", "source": "https://t.me/cvedetector/23401", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-3820 - Tenda W12 and i24 Remote Stack-Based Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2025-3820 \nPublished : April 19, 2025, 9:15 p.m. | 1\u00a0hour, 47\u00a0minutes ago \nDescription : A vulnerability was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644) and classified as critical. Affected by this issue is the function cgiSysUplinkCheckSet of the file /bin/httpd. The manipulation of the argument hostIp1/hostIp2 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-20T01:10:42.000000Z"}, {"uuid": "ec7be65b-028d-4e08-8917-773e63410afe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3820", "type": "published-proof-of-concept", "source": "Telegram/PAoHVl0H4J6UH3dJFgfjXzuaZrgfyWEylUGYKBHxNeKoi60", "content": "", "creation_timestamp": "2025-04-20T00:00:29.000000Z"}]}