CVE-2025-25675 | Tenda AC10 15.03.06.23 POST Request formexeCommand cmdinput command injection

CVE-2025-25675 | Tenda AC10 15.03.06.23 POST Request formexeCommand cmdinput command injection

A vulnerability, which was classified as critical, has been found in Tenda AC10 15.03.06.23. This issue affects the function formexeCommand of the component POST Request Handler. The manipulation of the argument cmdinput leads to command injection. The identification of this vulnerability is CVE-2025-25675. The attack may be initiated remotely. There is no exploit available.