Ac6 Firmware Security Vulnerabilities and Issues — Ac6 Firmware CVE List

Lucene search

TendaAc6 Firmware

35 matches found

CVE•added 2025/01/09 11:15 a.m.•102 views

CVE-2025-0349

A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src/mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The ex...

9.8CVSS9AI score0.00483EPSS

Web

CVE•added 2025/02/21 5:15 p.m.•94 views

CVE-2025-25505

Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the sub_452A4 function.

6.5CVSS6.5AI score0.00062EPSS

CVE•added 2025/02/12 7:15 p.m.•78 views

CVE-2025-25343

Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function.

9.8CVSS7.2AI score0.00123EPSS

CVE•added 2025/06/09 1:15 a.m.•63 views

CVE-2025-5852

A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclo...

9CVSS9AI score0.00106EPSS

CVE•added 2025/02/21 5:15 p.m.•58 views

CVE-2025-25507

There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the formexeCommand function, the parameter cmdinput will cause remote command execution.

6.5CVSS6.7AI score0.00294EPSS

CVE•added 2025/03/02 11:15 a.m.•54 views

CVE-2025-1814

A vulnerability, which was classified as critical, has been found in Tenda AC6 15.03.05.16. Affected by this issue is some unknown functionality of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. The attack may be launched remotely...

9.8CVSS7.1AI score0.00057EPSS

CVE•added 2025/01/16 10:15 p.m.•53 views

CVE-2024-46450

Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi Router Model AC6 v2.0 Firmware v15.03.06.50 allows attackers to bypass authentication via a crafted web request.

8.1CVSS7.3AI score0.00072EPSS

CVE•added 2025/03/20 5:15 p.m.•50 views

CVE-2025-29121

A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fast_setting_wifi_set file form_fast_setting_wifi_set. Using the timeZone parameter causes a stack-based buffer overflow.

7.5CVSS7.1AI score0.00095EPSS

CVE•added 2025/03/14 2:15 p.m.•48 views

CVE-2025-29030

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formWifiWpsOOB function.

9.8CVSS7.9AI score0.00091EPSS

CVE•added 2025/03/14 2:15 p.m.•47 views

CVE-2025-29029

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formSetSpeedWan function.

9.8CVSS7.9AI score0.00091EPSS

CVE•added 2025/03/14 2:15 p.m.•45 views

CVE-2025-29031

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the fromAddressNat function.

9.8CVSS7.9AI score0.00091EPSS

CVE•added 2025/06/09 1:15 a.m.•42 views

CVE-2025-5853

A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. The attack can be launched remotely. Th...

9CVSS8.9AI score0.00172EPSS

CVE•added 2025/06/09 1:15 a.m.•42 views

CVE-2025-5854

A vulnerability, which was classified as critical, has been found in Tenda AC6 15.03.05.16. Affected by this issue is the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. The attack may be launched remotely. The exploit has...

9CVSS8.8AI score0.00106EPSS

CVE•added 2025/06/09 2:15 a.m.•41 views

CVE-2025-5855

A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely. T...

9.8CVSS8.9AI score0.0016EPSS

CVE•added 2025/06/02 3:15 p.m.•35 views

CVE-2025-44172

Tenda AC6 V15.03.05.16 was discovered to contain a stack overflow via the time parameter in the setSmartPowerManagement function.

6.5CVSS7.9AI score0.00053EPSS

CVE•added 2025/06/12 4:15 p.m.•33 views

CVE-2025-46035

Buffer Overflow vulnerability in Tenda AC6 v.15.03.05.16 allows a remote attacker to cause a denial of service via the oversized schedStartTime and schedEndTime parameters in an unauthenticated HTTP GET request to the /goform/openSchedWifi endpoint

7.5CVSS7.3AI score0.00071EPSS

CVE•added 2025/07/03 2:15 p.m.•10 views

CVE-2025-50258

Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the SetSysTimeCfg function via the time parameter.

8.1CVSS6.6AI score0.00082EPSS

CVE•added 2025/07/03 2:15 p.m.•10 views

CVE-2025-50260

Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetFirewallCfg function via the firewallEn parameter.

7.5CVSS7.1AI score0.00077EPSS

CVE•added 2025/07/03 2:15 p.m.•10 views

CVE-2025-50262

Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetQosBand function via the list parameter.

7.5CVSS6.6AI score0.00077EPSS

CVE•added 2025/07/03 2:15 p.m.•10 views

CVE-2025-50263

Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the fromSetRouteStatic function via the list parameter.

8.1CVSS6.6AI score0.00082EPSS

CVE•added 2025/06/27 2:15 p.m.•9 views

CVE-2025-50528

A buffer overflow vulnerability exists in the fromNatStaticSetting function of Tenda AC6

7.3CVSS7.1AI score0.00071EPSS

CVE•added 2025/07/01 4:15 p.m.•9 views

CVE-2025-50641

Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the addWifiMacFilter function via the parameter deviceId.

6.5CVSS6.6AI score0.00059EPSS

CVE•added 2025/07/21 1:15 a.m.•9 views

CVE-2025-7914

A vulnerability has been found in Tenda AC6 15.03.06.50 and classified as critical. Affected by this vulnerability is the function setparentcontrolinfo of the component httpd. The manipulation leads to buffer overflow. The attack can be launched remotely.

9CVSS8.9AI score0.00091EPSS

CVE•added 2025/08/20 3:15 p.m.•8 views

CVE-2025-55482

Tenda AC6 V15.03.06.23_multi is vulnerable to Buffer Overflow in the formSetCfm function.

7.5CVSS7.1AI score0.0005EPSS

CVE•added 2025/08/20 3:15 p.m.•7 views

CVE-2025-55498

Tenda AC6 V15.03.06.23_multi was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function.

7.5CVSS8.1AI score0.0005EPSS

CVE•added 2025/08/20 2:15 p.m.•6 views

CVE-2025-24322

An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted network request can lead to arbitrary code execution. An attacker can browse to the device to trigger this vulnerability.

9.8CVSS8AI score0.00078EPSS

CVE•added 2025/08/20 2:15 p.m.•6 views

CVE-2025-24496

An information disclosure vulnerability exists in the /goform/getproductInfo functionality of Tenda AC6 V5.0 V02.03.01.110. Specially crafted network packets can lead to a disclosure of sensitive information. An attacker can send packets to trigger this vulnerability.

7.5CVSS6.5AI score0.00042EPSS

CVE•added 2025/08/20 2:15 p.m.•6 views

CVE-2025-32010

A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this vulnerability.

9.8CVSS8.2AI score0.00622EPSS

CVE•added 2025/08/20 2:15 p.m.•6 views

CVE-2025-55483

Tenda AC6 V15.03.06.23_multi is vulnerable to Buffer Overflow in the function formSetMacFilterCfg via the parameters macFilterType and deviceList.

7.5CVSS7.1AI score0.0005EPSS

CVE•added 2025/08/20 2:15 p.m.•6 views

CVE-2025-55499

Tenda AC6 V15.03.06.23_multi was discovered to contain a buffer overflow via the ntpServer parameter in the fromSetSysTime function.

6.5CVSS8.1AI score0.00038EPSS

CVE•added 2025/08/20 2:15 p.m.•6 views

CVE-2025-55503

Tenda AC6 V15.03.06.23_multi has a stack overflow vulnerability via the deviceName parameter in the saveParentControlInfo function.

7.3CVSS7.6AI score0.00046EPSS

CVE•added 2025/08/20 2:15 p.m.•5 views

CVE-2025-27129

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.

9.8CVSS8AI score0.0017EPSS

CVE•added 2025/08/20 2:15 p.m.•5 views

CVE-2025-30256

A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted series of HTTP requests can lead to a reboot. An attacker can send multiple network packets to trigger this vulnerability.

8.6CVSS7AI score0.00067EPSS

CVE•added 2025/08/20 2:15 p.m.•5 views

CVE-2025-31355

A firmware update vulnerability exists in the Firmware Signature Validation functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted malicious file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

9.8CVSS7.8AI score0.00038EPSS

CVE•added 2025/08/27 7:15 p.m.•4 views

CVE-2025-55495

Tenda AC6 V15.03.06.23_multi was discovered to contain a buffer overflow via the list parameter in the fromSetIpMacBind function.

6.5CVSS7.5AI score0.00034EPSS