CVE-2025-70252

Published: Mar 2, 2026Modified: Mar 6, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23_multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability.

Affected (1)

Products: Tenda: Ac6 Firmware

1 product

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tenda Ac6 Firmware	Version 15.03.06.23_multi

Running on/with	Platform Versions
Tenda Ac6	Version 2.0

Related CWEs

Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

References (2)

https://github.com/akuma-QAQ/CVEreport/tree/main/D-link/CVE-2025-70252

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.tenda.com.cn/material/show/2855

Source: cve@mitre.org

Product

Timeline

No history available yet.