Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ac6_firmware
(Tenda)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 73 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-07-21 | CVE-2025-7914 | A vulnerability has been found in Tenda AC6 15.03.06.50 and classified as critical. Affected by this vulnerability is the function setparentcontrolinfo of the component httpd. The manipulation leads to buffer overflow. The attack can be launched remotely. | Ac6_firmware | 8.8 | ||
| 2020-12-30 | CVE-2020-28095 | On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, a large HTTP POST request sent to the change password API will trigger the router to crash and enter an infinite boot loop. | Ac6_firmware | 7.5 | ||
| 2025-01-16 | CVE-2024-46450 | Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi Router Model AC6 v2.0 Firmware v15.03.06.50 allows attackers to bypass authentication via a crafted web request. | Ac6_firmware | N/A | ||
| 2025-07-01 | CVE-2025-50641 | Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the addWifiMacFilter function via the parameter deviceId. | Ac6_firmware | N/A | ||
| 2025-07-03 | CVE-2025-50258 | Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the SetSysTimeCfg function via the time parameter. | Ac6_firmware | N/A | ||
| 2025-07-03 | CVE-2025-50260 | Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetFirewallCfg function via the firewallEn parameter. | Ac6_firmware | N/A | ||
| 2025-07-03 | CVE-2025-50262 | Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetQosBand function via the list parameter. | Ac6_firmware | N/A | ||
| 2025-07-03 | CVE-2025-50263 | Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the fromSetRouteStatic function via the list parameter. | Ac6_firmware | N/A | ||
| 2025-06-27 | CVE-2025-50528 | A buffer overflow vulnerability exists in the fromNatStaticSetting function of Tenda AC6 <=V15.03.05.19 via the page parameter. | Ac6_firmware | N/A | ||
| 2025-06-12 | CVE-2025-46035 | Buffer Overflow vulnerability in Tenda AC6 v.15.03.05.16 allows a remote attacker to cause a denial of service via the oversized schedStartTime and schedEndTime parameters in an unauthenticated HTTP GET request to the /goform/openSchedWifi endpoint | Ac6_firmware | N/A |