EUVD-2025-24670

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vuln in Tenda AC20 firmware up to 16.03.08.12: strcpy in saveParentControlInfo enables remote buffer overflow via Time arg; exploit disclosed.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-8940	13 Aug 202513:03	–	circl
CNNVD	Tenda AC20 安全漏洞	14 Aug 202500:00	–	cnnvd
CNVD	Tenda AC20 Buffer Overflow Vulnerability (CNVD-2025-19580)	20 Aug 202500:00	–	cnvd
CVE	CVE-2025-8940	14 Aug 202505:32	–	cve
Cvelist	CVE-2025-8940 Tenda AC20 saveParentControlInfo strcpy buffer overflow	14 Aug 202505:32	–	cvelist
NVD	CVE-2025-8940	14 Aug 202506:15	–	nvd
OSV	CVE-2025-8940	14 Aug 202506:15	–	osv
Positive Technologies	PT-2025-33124 · Tenda · Tenda Ac20	14 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-8940	16 Aug 202506:11	–	redhatcve
Vulnrichment	CVE-2025-8940 Tenda AC20 saveParentControlInfo strcpy buffer overflow	14 Aug 202505:32	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "55730459-f38e-39b3-9d9a-d34f13ae0030",
        "vendor": {
          "name": "Tenda"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0590accb-d415-3170-b0c8-52e7a9dd25d9",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.1"
      },
      {
        "id": "065120d7-0378-3c53-b8e6-e9e71a2ae2d5",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.8"
      },
      {
        "id": "0c60c275-3b98-3969-a003-0df4214f6018",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.7"
      },
      {
        "id": "3988ba88-e9f3-39ca-8dfc-5067f581170c",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.2"
      },
      {
        "id": "3d078702-8920-3d93-9b80-3807697f5c6f",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.12"
      },
      {
        "id": "40628a5a-e337-3c7b-a1c6-8ec4c494ff8a",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.5"
      },
      {
        "id": "4143f7bc-d842-36ef-8935-583d5974c345",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.11"
      },
      {
        "id": "45233e20-21d4-3dcb-a5a2-8423d997a2db",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.3"
      },
      {
        "id": "53f27531-40c2-35b0-bbf7-d3fbf59f54f5",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.9"
      },
      {
        "id": "83bfa79f-d8db-3103-8ed4-fb0719553aca",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.10"
      },
      {
        "id": "89c82ed9-4a60-369f-bc83-f5ad346befab",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.0"
      },
      {
        "id": "c1de998b-73b0-3116-9251-24dd1e0b99d6",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.6"
      },
      {
        "id": "ee8db6ec-57ce-3e15-bdb0-1e939a29cef5",
        "product": {
          "name": "AC20"
        },
        "product_version": "16.03.08.4"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/lin-3-start/lin-cve/blob/main/Tenda%20AC20-2/Tenda%20AC20-2.md
github	www.github.com/lin-3-start/lin-cve/blob/main/Tenda%20AC20-2/Tenda%20AC20-2.md
tenda	www.tenda.com.cn/

03 Oct 2025 20:07Current

8.8High risk

Vulners AI Score8.8

CVSS 48.7

CVSS 3.18.8

CVSS 29

CVSS 38.8

EPSS0.0078

SSVC