CVE-2025-25507

Description

There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the formexeCommand function, the parameter cmdinput will cause remote command execution.

References

https://github.com/faqiadegege/IoTVuln/blob/main/tendaAC6_formexecommand_cmdinput_rce/detail.md

مدیریت سرور پشتیبانی و ثبت دامنه – آفاق هاستینگ

نوشته های مشابه

CVE-2026-6332 – Clear Text Storage of Sensitive Information on EcoStruxure™ Machine Expert HVAC

CVE-2026-46470 – GStreamer gst-plugins-good Integer Division by Zero Denial of Service

CVE-2026-46469 – GStreamer gst-plugins-good Integer Division by Zero Denial of Service

CVE-2026-44544 – gittuf: Policy can be rolled back to prior valid version