How to fix EUVD-2025-17414?

Within 24 hours: Inventory all Tenda AC15 devices in your environment and isolate affected units from critical network segments. Within 7 days: Implement network segmentation to restrict administrative access to affected routers and enable detailed logging on perimeter devices. Within 30 days: Plan migration to alternative router models or contact Tenda for patch availability; evaluate temporary replacement of affected units if patches remain unavailable.

Is Ac15 Firmware affected by EUVD-2025-17414?

A critical remote buffer overflow vulnerability (CVE-2025-5850) affects Tenda AC15 routers running firmware 15.03.05.19_multi, allowing unauthenticated attackers to compromise network infrastructure.

EUVD-2025-17414

| CVE-2025-5850 HIGH

2025-06-08 [email protected]

8.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 14, 2026 - 19:17 vuln.today

EUVD ID Assigned

Mar 14, 2026 - 19:17 euvd

EUVD-2025-17414

PoC Detected

Jun 09, 2025 - 19:04 vuln.today

Public exploit code

CVE Published

Jun 08, 2025 - 23:15 nvd

HIGH 8.8

Description

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been declared as critical. This vulnerability affects the function formsetschedled of the file /goform/SetLEDCf of the component HTTP POST Request Handler. The manipulation of the argument Time leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Analysis

Critical buffer overflow vulnerability in Tenda AC15 firmware version 15.03.05.19_multi affecting the HTTP POST request handler's LED configuration function. An authenticated remote attacker can exploit improper input validation on the 'Time' parameter to achieve buffer overflow, leading to complete system compromise including confidentiality, integrity, and availability violations. Public exploit code has been disclosed and the vulnerability meets criteria for active exploitation risk.

Technical Context

The vulnerability exists in the formsetschedled function of the /goform/SetLEDCf HTTP POST handler in Tenda AC15 wireless router firmware. This represents a classic CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) condition where user-supplied input on the 'Time' parameter is not properly validated before being written to a fixed-size buffer. Tenda AC15 devices use embedded HTTP servers to handle router configuration requests; the vulnerable endpoint processes LED scheduling parameters without adequate bounds checking. The CPE context implies this affects Tenda AC15 devices running firmware version 15.03.05.19_multi or potentially other 15.03.05.x releases. The HTTP POST request handler is a core component of the web-based management interface, making this remotely exploitable from the network.

Affected Products

AC15 (['15.03.05.19_multi'])

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.3

CVSS: +44

POC: +20

EUVD-2025-17414 vulnerability details – vuln.today

Back

EUVD-2025-17414

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Priority Score

Share

EUVD-2025-17414

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Priority Score

Share

External POC / Exploit Code