- Description
- A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLanip of the component HTTP POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
- Source
- cna@vuldb.com
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 7.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Secondary
- Base score
- 9
- Impact score
- 10
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:C/I:C/A:C
- cna@vuldb.com
- CWE-119
- Hype score
- Not currently trending
CVE-2025-5851 (CVSS:7.4, HIGH) is Analyzed. A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been rated as critical. This issue affects the functio..https://t.co/2rkmCmmpKK #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
14 Jun 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5851 Tenda AC15 Remote Buffer Overflow Vulnerability in LAN Mask Configuration https://t.co/F68hGA1jc6
@VulmonFeeds
9 Jun 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5851 A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLani… https://t.co/7FZRQJMS0u
@CVEnew
8 Jun 2025
719 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-5851: HIGH] Critical vulnerability discovered in Tenda AC15! Exploit allows buffer overflow via manipulation of lanMask argument in HTTP POST Request Handler. Remote attackers can initiate the attack.#cve,CVE-2025-5851,#cybersecurity https://t.co/yjJBqN2CbT https://t.co
@CveFindCom
8 Jun 2025
85 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:tenda:ac15_firmware:15.03.05.19_multi:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C545936B-4A4D-4740-9895-596C7EC48502"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:tenda:ac15:1.0:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D5059CAD-BD1A-4808-BCED-006444E60701"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]