CVE-2025-5852 – Tenda AC6 PPTP Form Set User List Buffer Overflow

CVE ID : CVE-2025-5852

Published : June 9, 2025, 1:15 a.m. | 1 hour, 44 minutes ago

Description : A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…