Lucene search
K

163 matches found

BDU FSTEC
BDU FSTEC
added 2026/01/06 12:0 a.m.4 views

The vulnerability of the /goform/WifiExtraSet file in the microprogramming router jd Tenda AC20 allows a hacker to cause a service failure.

The vulnerability of the /goform/WifiExtraSet file in the microprogramming router jd Tenda AC20 is related to the issue where an operation goes beyond the buffer boundaries in memory when processing the mac parameter. Exploiting this vulnerability can allow a remote attacker to cause a service...

9CVSS7.5AI score0.00661EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/31 9:9 p.m.6 views

CVE-2025-15356

A vulnerability has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS7AI score0.03449EPSS
Exploits1References1
NVD
NVD
added 2025/12/30 9:15 p.m.5 views

CVE-2025-15356

A vulnerability has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS0.03449EPSS
Exploits1References6
OSV
OSV
added 2025/12/30 9:15 p.m.5 views

CVE-2025-15356

A vulnerability has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow. The attack can be initiated remotely. The exploit...

8.7CVSS7.7AI score0.03449EPSS
Exploits1References6
CVE
CVE
added 2025/12/30 8:32 p.m.16 views

CVE-2025-15356

The vulnerability CVE-2025-15356 affects Tenda AC20 routers (firmware up to 16.03.08.12). The issue is in the sscanf call in /goform/PowerSaveSet, where improper handling of the arguments powerSavingEn, time, powerSaveDelay, and ledCloseType can lead to a buffer overflow. Remote exploitation is p...

9CVSS7AI score0.03449EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2025/12/30 8:32 p.m.6 views

EUVD-2025-205852

A vulnerability has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS6.8AI score0.03449EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/12/30 8:32 p.m.5 views

CVE-2025-15356 Tenda AC20 PowerSaveSet sscanf buffer overflow

A vulnerability has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS7AI score0.03449EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/12/30 8:32 p.m.25 views

CVE-2025-15356 Tenda AC20 PowerSaveSet sscanf buffer overflow

A vulnerability has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS0.03449EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.6 views

PT-2025-54177

Name of the Vulnerable Software and Affected Versions Tenda AC20 versions prior to 16.03.08.12 Description A buffer overflow issue exists in Tenda AC20 routers. The issue is located in the sscanf function within the /goform/PowerSaveSet file. Manipulation of the powerSavingEn, time, powerSaveDela...

9CVSS9AI score0.03449EPSS
Exploits1References12
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.4 views

Tenda AC20 安全漏洞

Tenda AC20 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC20 16.03.08.12 and earlier versions, which originates from incorrect operation of the parameters powerSavingEn/time/powerSaveDelay/ledCloseType in the file /goform/PowerSaveSet, which may result in a buff...

9CVSS9AI score0.03449EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/12/15 11:33 a.m.6 views

CVE-2025-14655

A security flaw has been discovered in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing a manipulation of the argument rebootTime results in stack-based buffer overflow. The attack is possibl...

9CVSS8.8AI score0.02862EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/15 11:33 a.m.8 views

CVE-2025-14656

A weakness has been identified in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing a manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow. The attack may be performed from remote. The exploit has been made availab...

9CVSS8.6AI score0.00632EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/15 10:22 a.m.6 views

CVE-2025-14654

A vulnerability was identified in Tenda AC20 16.03.08.12. The affected element is the function formSetPPTPUserList of the file /goform/setPptpUserList of the component httpd. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The...

9CVSS9AI score0.02862EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/14 12:32 p.m.6 views

EUVD-2025-203295

A vulnerability was identified in Tenda AC20 16.03.08.12. The affected element is the function formSetPPTPUserList of the file /goform/setPptpUserList of the component httpd. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The...

9CVSS6.9AI score0.02862EPSS
Exploits1References6
EUVD
EUVD
added 2025/12/14 12:32 p.m.10 views

EUVD-2025-203297

A weakness has been identified in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow. The attack may be performed from remote. The exploit has been made available...

9CVSS6.6AI score0.00632EPSS
Exploits1References6
EUVD
EUVD
added 2025/12/14 12:32 p.m.7 views

EUVD-2025-203294

A security flaw has been discovered in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing manipulation of the argument rebootTime results in stack-based buffer overflow. The attack is possible ...

9CVSS6.8AI score0.02862EPSS
Exploits1References6
NVD
NVD
added 2025/12/14 11:15 a.m.13 views

CVE-2025-14656

A weakness has been identified in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing a manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow. The attack may be performed from remote. The exploit has been made availab...

9CVSS0.00632EPSS
Exploits1References5
OSV
OSV
added 2025/12/14 11:15 a.m.6 views

CVE-2025-14656

A weakness has been identified in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing a manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow. The attack may be performed from remote. The exploit has been made availab...

8.7CVSS7.8AI score0.00632EPSS
Exploits1References5
OSV
OSV
added 2025/12/14 11:15 a.m.7 views

CVE-2025-14655

A security flaw has been discovered in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing a manipulation of the argument rebootTime results in stack-based buffer overflow. The attack is possibl...

8.7CVSS6.3AI score0.02862EPSS
Exploits1References5
NVD
NVD
added 2025/12/14 11:15 a.m.5 views

CVE-2025-14655

A security flaw has been discovered in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing a manipulation of the argument rebootTime results in stack-based buffer overflow. The attack is possibl...

9CVSS0.02862EPSS
Exploits1References5
Rows per page
Query Builder