CVE-2025-57638 | Tenda AC9 1.0 Configuration sys.vendor buffer overflow

September 24, 2025 Yanac

A vulnerability labeled as critical has been found in Tenda AC9 1.0. Affected by this issue is some unknown functionality of the component Configuration Handler. Executing manipulation of the argument sys.vendor can lead to buffer overflow.

This vulnerability appears as CVE-2025-57638. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-57636 | D-Link C1 2020-02-21 jHTTPd sub_47F028 Time os command injection
CVE-2025-52905 | TOTOLINK X6000R up to V9.4.0cu.1360_B20241207 denial of service