PT-2025-30226 · Tenda · Tenda Ac6
Gaochen
·
Published
2025-07-07
·
Updated
2025-07-21
·
CVE-2025-7914
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Tenda AC6 version 15.03.06.50
Description
A critical vulnerability exists in Tenda AC6 due to a buffer overflow in the
setparentcontrolinfo function of the httpd component. The issue is exploitable remotely.Recommendations
Update Tenda AC6 to a version where this vulnerability is addressed. As a temporary workaround, consider disabling the
setparentcontrolinfo function until a patch is available.Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tenda Ac6