ID
VAR-202506-0463
CVE
CVE-2025-5855
TITLE
Shenzhen Tenda Technology Co.,Ltd. of AC6 Buffer error vulnerability in firmware
Trust: 0.8
DESCRIPTION
A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Shenzhen Tenda Technology Co.,Ltd. of AC6 The firmware contains a buffer error vulnerability, a stack-based buffer overflow vulnerability, and an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. The vulnerability is caused by the parameter rebootTime in the file /goform/SetRebootTimer failing to correctly verify the length of the input data. Remote attackers can exploit this vulnerability to execute arbitrary code on the system or cause a denial of service attack
Trust: 2.16
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | tenda | model: | ac6 | scope: | eq | version: | 15.03.05.16 | Trust: 1.0 |
| vendor: | tenda | model: | ac6 | scope: | eq | version: | ac6 firmware 15.03.05.16 | Trust: 0.8 |
| vendor: | tenda | model: | ac6 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | tenda | model: | ac6 | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | jixiang tengda | model: | ac6 | scope: | eq | version: | 15.03.05.16 | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-121 | Trust: 1.0 |
| problemtype: | CWE-119 | Trust: 1.0 |
| problemtype: | CWE-787 | Trust: 1.0 |
| problemtype: | Buffer error (CWE-119) [ others ] | Trust: 0.8 |
| problemtype: | Stack-based buffer overflow (CWE-121) [ others ] | Trust: 0.8 |
| problemtype: | Out-of-bounds writing (CWE-787) [NVD evaluation ] | Trust: 0.8 |
PATCH
| title: | Patch for Tenda AC6 /goform/SetRebootTimer file buffer overflow vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/702396 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2025-5855 | Trust: 3.2 |
| db: | VULDB | id: | 311601 | Trust: 1.8 |
| db: | JVNDB | id: | JVNDB-2025-006527 | Trust: 0.8 |
| db: | CNVD | id: | CNVD-2025-14279 | Trust: 0.6 |
REFERENCES
| url: | https://lavender-bicycle-a5a.notion.site/tenda-ac6-formsetreboottimer-20a53a41781f80c5b6cac51008556c7e?source=copy_link | Trust: 2.4 |
| url: | https://vuldb.com/?id.311601 | Trust: 1.8 |
| url: | https://vuldb.com/?submit.591422 | Trust: 1.8 |
| url: | https://www.tenda.com.cn/ | Trust: 1.8 |
| url: | https://vuldb.com/?ctiid.311601 | Trust: 1.0 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2025-5855 | Trust: 0.8 |
SOURCES
| db: | CNVD | id: | CNVD-2025-14279 |
| db: | JVNDB | id: | JVNDB-2025-006527 |
| db: | NVD | id: | CVE-2025-5855 |
LAST UPDATE DATE
2025-07-01T23:11:18.630000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2025-14279 | date: | 2025-06-30T00:00:00 |
| db: | JVNDB | id: | JVNDB-2025-006527 | date: | 2025-06-10T01:55:00 |
| db: | NVD | id: | CVE-2025-5855 | date: | 2025-06-09T19:03:39.630 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2025-14279 | date: | 2025-06-26T00:00:00 |
| db: | JVNDB | id: | JVNDB-2025-006527 | date: | 2025-06-10T00:00:00 |
| db: | NVD | id: | CVE-2025-5855 | date: | 2025-06-09T02:15:23.293 |