CVE-2025-50262

Name of the Vulnerable Software and Affected Versions: Tenda AC6 version 15.03.05.16 multi

Description: The issue concerns a Buffer Overflow in the formSetQosBand function via the list parameter. This occurs in the context of QoS configuration.

Recommendations: For Tenda AC6 version 15.03.05.16 multi, as a temporary workaround, consider restricting access to the QoS configuration to minimize the risk of exploitation. Avoid using the list parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.