Buffer Overflow Vulnerability in Tenda AC6 Router
CVE-2025-29031

9.8CRITICAL

Key Information:

Vendor: Tenda
Status: AC6 Router
Vendor: CVE Published:; 14 March 2025

Summary

A vulnerability has been found in the Tenda AC6 router, specifically in version 15.03.05.16. This weakness is categorized as a buffer overflow occurring within the fromAddressNat function. Exploiting this vulnerability could allow unauthorized access to the router and potentially compromise user data and network security. It is imperative for users to assess the security of their systems and consider applying available updates or mitigations.

References

https://github.com/WhereisDoujo/CVE/issues/5

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 14, 2025
Vulnerability Reserved
Mar 11, 2025