Vulnerabilities > CVE-2025-45427 - Unspecified vulnerability in Tenda AC9 Firmware 15.03.05.14Multi

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

tenda

NVD

Published: 2025-04-23

Updated: 2025-04-30

Summary

In Tenda AC9 v1.0 with firmware V15.03.05.14_multi, the security parameter of /goform/WifiBasicSet has a stack overflow vulnerability, which can lead to remote arbitrary code execution.

Vulnerable Configurations

Part	Description	Count
OS	Tenda Tenda AC9 Firmware 15.03.05.14_Multi	1
Hardware	Tenda Tenda AC9 1.0	1

References

https://github.com/shuqi233/loophole/blob/main/Tenda%20AC9/WifiBasicSet-security.md
https://github.com/shuqi233/loophole/blob/main/Tenda%20AC9/WifiBasicSet-security.md