Buffer Overflow in Tenda AC10 Router
CVE-2025-25455

Currently unrated

Key Information:

Vendor: Tenda
Status: AC10
Vendor: CVE Published:; 17 April 2025

Summary

The Tenda AC10 router, specifically version V4.0si_V16.03.10.20, is susceptible to a buffer overflow vulnerability that can be exploited via the AdvSetMacMtuWan function using the wanMTU2 parameter. This vulnerability potentially allows an attacker to manipulate the router's memory, leading to unauthorized access or denial of service, posing a significant risk to network integrity.

References

https://github.com/xyqer1/Tenda-AC10-AdvSetMacMtuWan-wanM...

https://gist.github.com/xyqer1/6c865a9ec44b4797e78b6765cd...

Timeline

Vulnerability published
Apr 17, 2025
Vulnerability Reserved
Feb 7, 2025