CVE-2025-12225 | Tenda AC6 15.03.06.50 HTTP Request /goform/WifiGuestSet shareSpeed stack-based overflow

October 25, 2025 Yanac

A vulnerability described as critical has been identified in Tenda AC6 15.03.06.50. This issue affects some unknown processing of the file /goform/WifiGuestSet of the component HTTP Request Handler. Such manipulation of the argument shareSpeed leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2025-12225. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More