Description
Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetCfm function via the funcname, funcpara1, and funcpara2 parameters.
Published: 2026-04-08
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Potential Remote Code Execution
Action: Firmware Update
AI Analysis

Impact

The Tenda AC6 router, firmware version 15.03.05.16_multi, suffers from a buffer overflow in the formSetCfm function. The vulnerability is triggered when an attacker supplies malicious values for the funcname, funcpara1, and funcpara2 parameters, which are insufficiently validated before being copied into a fixed-size buffer. If an attacker can influence the size or contents of these inputs, the overflow may corrupt adjacent memory, allowing arbitrary code execution or denial-of-service on the device.

Affected Systems

This issue affects the Tenda AC6 router running firmware 15.03.05.16_multi. No other vendors or product variations are listed, and no detailed version range is available from the CNA data.

Risk and Exploitability

The vulnerability is high severity due to the buffer overflow, a well-known vector for remote code execution. While EPSS data is not provided and the issue is not listed in KEV, the lack of input validation implies that exploitation could be straightforward if an attacker can reach the affected function, likely through crafted HTTP requests to the router's web interface. The attack would require network connectivity to the device and knowledge of the vulnerable endpoint; once leveraged, it could give an attacker full control of the router.

Generated by OpenCVE AI on April 8, 2026 at 18:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware release that addresses the buffer overflow issue.
  • If no update is immediately available, restrict external access to the router’s management interface using network controls or firewall rules.
  • Monitor the device for abnormal behavior or unauthorized access attempts.
  • Keep security patches up to date and verify firmware integrity on all network endpoints.

Generated by OpenCVE AI on April 8, 2026 at 18:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 10 Apr 2026 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-120
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 09 Apr 2026 08:30:00 +0000

Type Values Removed Values Added
First Time appeared Tenda
Tenda ac6
Vendors & Products Tenda
Tenda ac6

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Title Buffer Overflow Vulnerability in Tenda AC6 formSetCfm Function
Weaknesses CWE-119

Wed, 08 Apr 2026 17:45:00 +0000

Type Values Removed Values Added
Description Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetCfm function via the funcname, funcpara1, and funcpara2 parameters.
References

Subscriptions

Tenda Ac6
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-10T15:42:37.221Z

Reserved: 2025-06-16T00:00:00.000Z

Link: CVE-2025-52221

cve-icon Vulnrichment

Updated: 2026-04-10T13:10:12.496Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-04-08T18:24:51.257

Modified: 2026-04-10T16:16:29.833

Link: CVE-2025-52221

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-09T08:22:52Z

Weaknesses