CVE-2025-25507 Information

Description

There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the formexeCommand function the parameter cmdinput will cause remote command execution.

Reference

https://github.com/faqiadegege/IoTVuln/blob/main/tendaAC6_formexecommand_cmdinput_rce/detail.md