CNNVD-202508-3302 Information

CNNVD ID

CNNVD-202508-3302

Related CVE

CVE-2025-57220

• CNNVD Published: 2025-08-28

Description (Chinese)

Tenda AC10是中国腾达（Tenda）公司的一款无线路由器。 Tenda AC10 v4.0 v16.03.10.09_multi_TDE01版本存在安全漏洞，该漏洞源于ate服务输入验证缺陷，可能导致通过特制UDP数据包提升至root权限。

Description (English)

Tenda AC10 is a wireless router of Tenda China. Tenda AC10 v4.0 v16.03.10.09 multi TDE01 has a security loophole, which stems from an ace service input validation defect, which may lead to an upgrade to root privileges through a customized UDP package.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-08-28

Last Modified

2026-02-24

References

https://plaid-knot-11b.notion.site/Unauthenticated-Remote-Root-Shell-via-Input-Validation-Flaw-in-ate-Service-on-Tenda-AC10-V4-0-23fb3e9cce32804d93aad7e79a82a7aa?source=copy_link https://nvd.nist.gov/vuln/detail/CVE-2025-57220