CVE-2025-60338

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Tenda AC6 V2.0 version 15.03.06.50

Description The Tenda AC6 V2.0 router contains a stack overflow in the page parameter within the DhcpListClient function. This issue allows attackers to cause a Denial of Service (DoS) by sending a crafted input. The vulnerability involves a buffer overflow when processing the page parameter via specially crafted HTTP requests.

Recommendations Update Tenda AC6 V2.0 to a version prior to 15.03.06.50.

Exploit

Fix

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2025-13344

CVE-2025-60338

Affected Products

Tenda Ac6 V2.0

CVE-2025-60338

Weakness Enumeration

Related Identifiers

Affected Products

References · 7