Tenda AC6 V15.03.05.16 firmware has a buffer overflow vulnerability in the formexeCommand function.
The vulnerability consists of improper validation of input data size in the formexeCommand function in the Tenda AC6 router firmware. An attacker can provide specially crafted data that exceeds the size of the allocated buffer in memory (buffer overflow), which leads to overwriting adjacent memory areas. This type of error (CWE-120) allows taking control over the program execution flow.
An attacker can gain full control over the device, including confidentiality, integrity, and availability of the system – which corresponds to the highest indicators in the CVSS vector. In practice, this may mean remote code execution (RCE) on the router without the need for authentication.
Patches available from the manufacturer should be applied according to references. If an update is not available, it is recommended to restrict access to the device's administrative panel exclusively to trusted local networks and disable remote management over the Internet.
Tenda AC6 with firmware version V15.03.05.16
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTenda Ac6
HWTendawszystkie wersjeTenda Ac6 Firmware
OSTenda15.03.05.16
Related vulnerabilities
Buffer Overflow w Tenda AC6 – funkcja formSetCfm
Auth Bypass + RCE w Tenda AC6 via HTTP (CVE-2025-27129)
Buffer overflow w Tenda AC6 — funkcja formSetSpeedWan
Buffer overflow w Tenda AC6 — funkcja formWifiWpsOOB
Buffer overflow w Tenda AC6 — funkcja fromAddressNat