CNNVD-202508-2417 Information

CNNVD ID

CNNVD-202508-2417

Related CVE

CVE-2025-55499

• CNNVD Published: 2025-08-20

Description (Chinese)

Tenda AC6是中国腾达（Tenda）公司的一款无线路由器。 Tenda AC6 V15.03.06.23_multi版本存在安全漏洞，该漏洞源于fromSetSysTime函数中ntpServer参数存在缓冲区溢出。

Description (English)

Tenda AC6 is a wireless router of Tenda China. There is a security loophole in Tenda AC6 V15.03.06.23 multi version, which stems from the spilling of the ntpServer parameters in the fromSetSysTime function.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-08-20

Last Modified

2026-02-24

References

https://github.com/SolitaryGrass/IoT_vuln/blob/main/tenda/AC6/AC6V2.0RTL_V15.03.06.23/fromSetSysTime/poc.md https://access.redhat.com/security/cve/cve-2025-55499 https://nvd.nist.gov/vuln/detail/CVE-2025-55499