CVE-2025-9828
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-02

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was determined in Tenda CP6 11.10.00.243. The affected element is the function sub_2B7D04 of the component uhttp. Executing manipulation can lead to risky cryptographic algorithm. The attack may be launched remotely. This attack is characterized by high complexity. The exploitability is described as difficult. The exploit has been publicly disclosed and may be utilized.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-02
Last Modified
2026-04-29
Generated
2026-05-27
AI Q&A
2025-09-02
EPSS Evaluated
2026-05-25
NVD
CVE-2025-9828
EUVD
EUVD-2025-26416
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
tenda cp6_firmware 11.10.00.243
tenda cp6 *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-310 Cryptographic Issues
CWE-327 The product uses a broken or risky cryptographic algorithm or protocol.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

CVE-2025-9828 is a vulnerability in the Tenda CP6 router firmware version 11.10.00.243, specifically in the function sub_2B7D04 of the uhttp component. The vulnerability arises because the device uses a broken or risky additive checksum algorithm to verify firmware integrity during updates. This checksum is susceptible to collisions, allowing an attacker to craft a malicious firmware image that bypasses integrity checks. Exploiting this can lead to arbitrary code execution or denial of service on the device. [1, 2]


How can this vulnerability impact me? :

This vulnerability can impact you by allowing a remote attacker to upload malicious firmware to your Tenda CP6 router, bypassing integrity verification. This can result in arbitrary code execution or denial of service, potentially compromising the router's operation and security. The attack is difficult to execute but has been publicly disclosed and a proof-of-concept exploit exists. [1, 2]


How can this vulnerability be detected on my network or system? Can you suggest some commands?

Detection of this vulnerability involves identifying if the Tenda CP6 router is running firmware version 11.10.00.243, which contains the vulnerable function sub_2B7D04 in the uhttp component. Since the vulnerability relates to a weak checksum algorithm used during firmware updates, network detection could include monitoring for unusual or unauthorized firmware update attempts or crafted firmware uploads. However, no specific detection commands or signatures are provided. You may check the router firmware version via its management interface or by querying the device using SNMP or SSH if available. For example, commands to check firmware version might be vendor-specific and are not detailed here. [1, 2]


What immediate steps should I take to mitigate this vulnerability?

Immediate mitigation steps include replacing the affected Tenda CP6 router or its firmware version 11.10.00.243 with a non-vulnerable version, as no known countermeasures or patches are currently available. Avoid applying firmware updates from untrusted sources and monitor for any suspicious firmware update activities. Since exploitation is difficult but possible remotely, restricting remote access to the device and applying network segmentation can reduce risk. [2]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart