CVE-2025-60340

Name of the Vulnerable Software and Affected Versions Tenda AC6 version 15.03.06.50

Description Multiple buffer overflows exist in the SetClientState function of the Tenda AC6 router. Exploitation of these overflows can lead to a Denial of Service (DoS) by injecting a crafted payload into the limitSpeed, deviceId, and limitSpeedUp parameters. The vulnerability allows a remote attacker to potentially execute arbitrary code or cause a service disruption by sending a specially crafted HTTP request.

Recommendations Update to a newer version of the firmware that addresses this vulnerability. As a temporary workaround, consider disabling the SetClientState function if possible, or restricting access to the affected parameters (limitSpeed, deviceId, and limitSpeedUp).