- Description
- A vulnerability, which was classified as critical, has been found in Tenda AC9 15.03.02.13. Affected by this issue is the function fromadvsetlanip of the file /goform/AdvSetLanip of the component POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
- Source
- cna@vuldb.com
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 7.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Secondary
- Base score
- 9
- Impact score
- 10
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:C/I:C/A:C
- cna@vuldb.com
- CWE-119
- Hype score
- Not currently trending
CVE-2025-5839 (CVSS:7.4, HIGH) is Analyzed. A vulnerability, which was classified as critical, has been found in Tenda AC9 15.03.02.13. Affected by this issue is th..https://t.co/RemBnb3vcQ #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
12 Jun 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Critical buffer overflow in Tenda AC9 (CVE-2025-5839) allows remote attacks. Exploit is public. Patch now! Details: https://t.co/eeBeKsGIjd #OffSeq #CyberSecurity #CVE20255839 #IoTSecurity https://t.co/UAEtUNsp2u
@offseq
8 Jun 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5839 Critical Remote Buffer Overflow in Tenda AC9 via Malformed LAN Mask Parameter https://t.co/snIWRXa7Yp
@VulmonFeeds
7 Jun 2025
78 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5839 A vulnerability, which was classified as critical, has been found in Tenda AC9 15.03.02.13. Affected by this issue is the function fromadvsetlanip of the file /goform/A… https://t.co/VRf4LjrUwK
@CVEnew
7 Jun 2025
779 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-5839: HIGH] Critical vulnerability identified in Tenda AC9 15.03.02.13 allows remote attackers to trigger buffer overflow via manipulation of lanMask argument in POST Request Handler, confirming its ...#cve,CVE-2025-5839,#cybersecurity https://t.co/9fWtTSy0IX https://t.
@CveFindCom
7 Jun 2025
77 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:tenda:ac9_firmware:15.03.2.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3473D6FD-4D42-46D0-9D96-F95D6D856E8E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:tenda:ac9:1.0:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "566DA530-18FC-4A46-95B4-2A7D343A96A7"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]