CVE-2025-5853 – Tenda AC6 Stack-Based Buffer Overflow Vulnerability

June 9, 2025

CVE ID : CVE-2025-5853

Published : June 9, 2025, 1:15 a.m. | 3 hours, 2 minutes ago

Description : A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5854 – “Tenda AC6 Buffer Overflow Vulnerability”

Next Article CVE-2025-5852 – Tenda AC6 PPTP Form Set User List Buffer Overflow

Highlights

CVE-2025-5368 – PHPGurukul Daily Expense Tracker System SQL Injection Vulnerability

May 31, 2025

CVE ID : CVE-2025-5368

Published : May 31, 2025, 4:15 a.m. | 1 hour, 27 minutes ago

Description : A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. This issue affects some unknown processing of the file /expense-yearwise-reports-detailed.php. The manipulation of the argument todate leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Functionally, a Date

Creating Elastic And Bounce Effects With Expressive Animator

Microsoft shares Insiders preview of Visual Studio 2026

From Data To Decisions: UX Strategies For Real-Time Dashboards

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Can I use React Server Components (RSCs) today?

Can I use React Server Components (RSCs) today?

Perficient Named among Notable Providers in Forrester’s Q3 2025 Commerce Services Landscape

Sarah McDowell Helps Clients Build a Strong AI Foundation Through Salesforce

I Ran Local LLMs on My Android Phone

I Ran Local LLMs on My Android Phone

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

CVE-2025-5853 – Tenda AC6 Stack-Based Buffer Overflow Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-48914 – Drupal COOKiES Consent Management Cross-Site Scripting (XSS)

Microsoft Limits Free “onmicrosoft” Email Domains to Stop Spam

CVE-2025-7122 – Campcodes Complaint Management System SQL Injection Vulnerability

Eloquent Cast for HTML Strings in Laravel

CVE-2025-5368 – PHPGurukul Daily Expense Tracker System SQL Injection Vulnerability

Panda3DS is an Nintendo 3DS emulator

FOSS Weekly #25.36: Ubuntu 25.10 Features, Top Command, Firefox Survives, Sudo Tips and More

CVE-2025-46646 – Ghostscript UTF-8 Encoding Vulnerability

CVE-2025-5853 – Tenda AC6 Stack-Based Buffer Overflow Vulnerability

Related Posts