Shodan
Vulnerabilities
Vulnerable Software
Tenda:  >> Ac6  Security Vulnerabilities
CVE-2025-29121
A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fast_setting_wifi_set file form_fast_setting_wifi_set. Using the timeZone parameter causes a stack-based buffer overflow.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-03-20
CVE-2025-29030
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formWifiWpsOOB function.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-14
CVE-2025-29031
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the fromAddressNat function.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-14
CVE-2025-29029
Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formSetSpeedWan function.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-03-14
CVE-2025-1814
A vulnerability, which was classified as critical, has been found in Tenda AC6 15.03.05.16. Affected by this issue is some unknown functionality of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-03-02
CVE-2025-25505
Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the sub_452A4 function.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-02-21
CVE-2025-25507
There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the formexeCommand function, the parameter cmdinput will cause remote command execution.
CVSS Score
6.5
EPSS Score
0.003
Published
2025-02-21
CVE-2025-25343
Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-02-12
CVE-2025-0349
A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src/mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
CVSS Score
8.8
EPSS Score
0.002
Published
2025-01-09
CVE-2024-52714
Tenda AC6 v2.0 v15.03.06.50 was discovered to contain a buffer overflow in the function 'fromSetSysTime.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-11-19


Products
Pricing
Contact Us

Shodan ® - All rights reserved