11 matches found
CVE-2025-14656
A weakness has been identified in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing a manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow. The attack may be performed from remote. The exploit has been made availab...
Tenda AC20 安全漏洞
Tenda AC20 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC20 version 16.03.08.12, which stems from an incorrect manipulation of the parameter list in the file /goform/setPptpUserList, which could result in a stack buffer overflow...
EUVD-2025-25104
Malicious code in bioql PyPI...
EUVD-2025-24671
Malicious code in bioql PyPI...
CVE-2025-9091
A security flaw has been discovered in Tenda AC20 16.03.08.12. Affected by this vulnerability is an unknown functionality of the file /etcro/shadow. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the local host. The complexity of an attack is rather high...
CVE-2025-9088
A vulnerability was found in Tenda AC20 16.03.08.12. This vulnerability affects the function savevirtualserdata of the file /goform/formSetVirtualSer. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed t...
CVE-2025-9087 Tenda AC20 SetNetControlList Endpoint set_qosMib_list stack-based overflow
A vulnerability has been found in Tenda AC20 16.03.08.12. This affects the function setqosMiblist of the file /goform/SetNetControlList of the component SetNetControlList Endpoint. The manipulation of the argument list leads to stack-based buffer overflow. It is possible to initiate the attack...
PT-2025-33606 · Tenda · Tenda Ac20
Name of the Vulnerable Software and Affected Versions: Tenda AC20 version 16.03.08.12 Description: A vulnerability exists in the sub 48E628 function of the /goform/SetIpMacBind file. Manipulation of the argument list leads to a stack-based buffer overflow, potentially allowing for remote...
PT-2025-33608 · Tenda · Tenda Ac20
Name of the Vulnerable Software and Affected Versions: Tenda AC20 version 16.03.08.12 Description: A security flaw has been discovered in Tenda AC20. The vulnerability affects an unknown functionality of the file /etc ro/shadow. Manipulation of this file leads to the disclosure of hard-coded...
CVE-2025-8939 Tenda AC20 WifiGuestSet buffer overflow
A vulnerability was determined in Tenda AC20 up to 16.03.08.12. Affected is an unknown function of the file /goform/WifiGuestSet. The manipulation of the argument shareSpeed leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...
CVE-2025-8939
The CVE-2025-8939 issue affects Tenda AC20 routers (firmware versions up to 16.03.08.12) due to a buffer overflow in an unknown function that processes the shareSpeed argument in /goform/WifiGuestSet. This leads to remote code execution potential or denial of service, with the exploit disclosed p...