Submit #844435: Tenda AC6V2.0 Tenda AC6V2.0 V15.03.06.23_multi Stack-based Buffer Overflowinfo

TitleTenda AC6V2.0 Tenda AC6V2.0 V15.03.06.23_multi Stack-based Buffer Overflow
DescriptionA vulnerability was determined in Tenda AC6V2.0 V15.03.06.23_multi. Specifically, the function fromDhcpListClient within the httpd binary is affected. This function improperly handles user-supplied input passed through the list1 argument or page argument, causing a stack-based buffer overflow. By supplying an overly long string to the list1 parameter or page parameter via a crafted HTTP request, an attacker can overwrite the return address on the stack. This vulnerability can be exploited remotely, leading to denial of service or, potentially, arbitrary code execution with root privileges.
Source⚠️ https://github.com/Axelioc/CVE/blob/main/Tenda/AC6V2.0/fromDhcpListClient.md
User
 Haaalion (UID 89556)
Submission06/01/2026 02:54 (1 month ago)
Moderation06/28/2026 20:40 (28 days later)
StatusDuplicate
VulDB entry230077 [Tenda AC6 US_AC6V1.0BR_V15.03.05.19 fromDhcpListClient stack-based overflow]
Points0

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!