PT-2025-43377 · Tenda · Tenda Ac6 V2.0

Published

2025-10-22

·

Updated

2025-10-23

·

CVE-2025-60338

CVSS v3.1
7.5
VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Tenda AC6 V2.0 version 15.03.06.50
Description The Tenda AC6 V2.0 router version 15.03.06.50 contains a stack overflow in the 
page
parameter within the 
DhcpListClient
function. A crafted input can trigger this issue, leading to a Denial of Service (DoS).
Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the 
DhcpListClient
function until a patch is available.

Exploit

Fix

DoS

Memory Corruption

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2025-60338

Affected Products

Tenda Ac6 V2.0