Unrated severityNVD Advisory· Published Sep 15, 2025· Updated Sep 15, 2025
Tenda AC9/AC15 exeCommand formexeCommand buffer overflow
CVE-2025-10443
Description
A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability affects the function formexeCommand of the file /goform/exeCommand. Such manipulation of the argument cmdinput leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.
Affected products
4Patches
Vulnerability mechanics
References
6- github.com/2664521593/mycve/blob/main/Tenda/Tenda_AC15_AC9_Bof.mdmitreexploit
- vuldb.commitrethird-party-advisory
- github.com/2664521593/mycve/blob/main/Tenda/Tenda_AC15_AC9_Bof.mdmitrerelated
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
- www.tenda.com.cnmitreproduct
News mentions
0No linked articles in our index yet.