Details of VAR-202510-2335

ID

VAR-202510-2335

CVE

CVE-2025-60339

TITLE

Tenda AC6 openSchedWifi function buffer overflow vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-26963

DESCRIPTION

Multiple buffer overflow vulnerabilities in the openSchedWifi function of Tenda AC6 v.15.03.06.50 allows attackers to cause a Denial of Service (DoS) via injecting a crafted payload into the schedStartTime and schedEndTime parameters. The Tenda AC6 is a wireless router manufactured by Tenda, a Chinese company. Version 15.03.06.50 of the Tenda AC6 contains a buffer overflow vulnerability. This vulnerability stems from the openSchedWifi function failing to properly validate the length of the input data. Attackers could exploit this vulnerability to execute arbitrary code or cause a denial-of-service attack

Trust: 1.44

sources: NVD: CVE-2025-60339 // CNVD: CNVD-2025-26963

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-26963

AFFECTED PRODUCTS

vendor:

tenda

model:

ac6

scope:

version:

15.03.06.50

Trust: 1.6

sources: CNVD: CNVD-2025-26963 // NVD: CVE-2025-60339

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2025-60339
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2025-26963
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-26963
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2025-60339
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-26963 // NVD: CVE-2025-60339

PROBLEMTYPE DATA

problemtype:	CWE-787	Trust: 1.0
problemtype:	CWE-120	Trust: 1.0

sources: NVD: CVE-2025-60339

EXTERNAL IDS

db:	NVD	id:	CVE-2025-60339	Trust: 1.6
db:	CNVD	id:	CNVD-2025-26963	Trust: 0.6

sources: CNVD: CNVD-2025-26963 // NVD: CVE-2025-60339

REFERENCES

url:	https://github.com/z472421519/binaryaudit/blob/main/poc/bof/tenda/setschedwifi/setschedwifi.md	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-60339	Trust: 0.6

sources: CNVD: CNVD-2025-26963 // NVD: CVE-2025-60339

SOURCES

db:	CNVD	id:	CNVD-2025-26963
db:	NVD	id:	CVE-2025-60339

LAST UPDATE DATE

2025-11-19T23:10:02.875000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-26963	date:	2025-11-05T00:00:00
db:	NVD	id:	CVE-2025-60339	date:	2025-10-27T16:15:41.590

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-26963	date:	2025-11-05T00:00:00
db:	NVD	id:	CVE-2025-60339	date:	2025-10-22T18:15:34.863