CVE-2025-30256

A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted series of HTTP requests can lead to a reboot. An attacker can send multiple network packets to trigger this vulnerability.

CVSS v3 8.6 HIGH

8.6^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2166	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:tenda:ac6_firmware:02.03.01.110:*:*:*:*:*:*:*

cpe:2.3:h:tenda:ac6:5.0:*:*:*:*:*:*:*

History

21 Aug 2025, 18:23

Type	Values Removed	Values Added
References	~~() https://talosintelligence.com/vulnerability_reports/TALOS-2025-2166 -~~	() https://talosintelligence.com/vulnerability_reports/TALOS-2025-2166 - Third Party Advisory
First Time		Tenda ac6 Tenda ac6 Firmware Tenda
Summary		(es) Existe una vulnerabilidad de denegación de servicio en la función de análisis de encabezados HTTP de Tenda AC6 V5.0 V02.03.01.110. Una serie de solicitudes HTTP especialmente manipuladas puede provocar un reinicio. Un atacante puede enviar múltiples paquetes de red para activar esta vulnerabilidad.
CPE		cpe:2.3:o:tenda:ac6_firmware:02.03.01.110:::::::* cpe:2.3:h:tenda:ac6:5.0:::::::*

20 Aug 2025, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-20 14:15

Updated : 2025-08-21 18:23

NVD link : CVE-2025-30256

Mitre link : CVE-2025-30256

CVE.ORG link : CVE-2025-30256

JSON object : View

Products Affected

tenda

ac6
ac6_firmware

CWE

CWE-772

Missing Release of Resource after Effective Lifetime

{"id": "CVE-2025-30256", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "talos-cna@cisco.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-08-20T14:15:43.067", "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2025-2166", "tags": ["Third Party Advisory"], "source": "talos-cna@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "talos-cna@cisco.com", "description": [{"lang": "en", "value": "CWE-772"}]}], "descriptions": [{"lang": "en", "value": "A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted series of HTTP requests can lead to a reboot. An attacker can send multiple network packets to trigger this vulnerability."}, {"lang": "es", "value": "Existe una vulnerabilidad de denegaci\u00f3n de servicio en la funci\u00f3n de an\u00e1lisis de encabezados HTTP de Tenda AC6 V5.0 V02.03.01.110. Una serie de solicitudes HTTP especialmente manipuladas puede provocar un reinicio. Un atacante puede enviar m\u00faltiples paquetes de red para activar esta vulnerabilidad."}], "lastModified": "2025-08-21T18:23:00.950", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tenda:ac6_firmware:02.03.01.110:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBBF7445-03C8-48EA-9DC3-BD4825E7CC0A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tenda:ac6:5.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CFBE582F-BE50-4810-AAB2-B19F40693ACE"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "talos-cna@cisco.com"}