CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-7914

A vulnerability has been found in Tenda AC6 15.03.06.50 and classified as critical. Affected by this vulnerability is the function setparentcontrolinfo of the component httpd. The manipulation leads to buffer overflow. The attack can be launched remotely.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

https://github.com/gaochen61/IoTVuln/blob/main/Tenda_AC6_V15.03.06.50/setparentcontrolinfo.md
https://vuldb.com/?ctiid.317029
https://vuldb.com/?id.317029
https://vuldb.com/?submit.618859
https://www.tenda.com.cn/

Products affected by CVE-2025-7914

Tenda » Ac6 » Version: 2.0

cpe:2.3:h:tenda:ac6:2.0
Tenda » Ac6 Firmware » Version: 15.03.06.50

cpe:2.3:o:tenda:ac6_firmware:15.03.06.50

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-7914

Products

Pricing

Contact Us