CVE-2025-32010
published 2025-08-20CVE-2025-32010: A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this vulnerability.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tenda | ac6_firmware | — | — |
| tenda | ac6_v5.0 | — | — |