cvedb.io
CVE-2025-9828
LOW · CVSS 3.7
EPSS exploitation probability: 0%
Published 2025-09-02T17:15:36.740 · Last modified 2026-06-17T10:09:51.130

Summary

A vulnerability was determined in Tenda CP6 11.10.00.243. The affected element is the function sub_2B7D04 of the component uhttp. Executing manipulation can lead to risky cryptographic algorithm. The attack may be launched remotely. This attack is characterized by high complexity. The exploitability is described as difficult. The exploit has been publicly disclosed and may be utilized.

Affected products

tenda — cp6_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when tenda ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.