CNNVD-202508-1845 Information
CNNVD ID
CNNVD-202508-1845
Related CVE
- CNNVD Published: 2025-08-15
Description (Chinese)
Tenda AC20是中国腾达(Tenda)公司的一款无线路由器。 Tenda AC20 16.03.08.12版本存在安全漏洞,该漏洞源于/goform/setMacFilterCfg文件中sub_46A2AC函数对参数deviceList处理不当导致栈缓冲区溢出。
Description (English)
Tenda AC20 is a wireless router of Tenda China. Version 16.03.08.12 of Tenda AC16.0.08.12 contains a security loophole that originates from sub 46A2AC function of sub 46A2Afg file mishandling of parameter deviceList, resulting in spillage of the silo buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
腾达
Published
2025-08-15
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.320267 https://github.com/ZZ2266/.github.io/blob/main/AC20/formSetMacFilterCfg/readme.md#poc-python-exploit-script https://www.tenda.com.cn/ https://vuldb.com/?submit.631932 https://vuldb.com/?id.320267 https://nvd.nist.gov/vuln/detail/CVE-2025-9046 https://access.redhat.com/security/cve/cve-2025-9046
Share on: