CNNVD-202508-1983 Information
CNNVD ID
CNNVD-202508-1983
Related CVE
- CNNVD Published: 2025-08-17
Description (Chinese)
Tenda AC20是中国腾达(Tenda)公司的一款无线路由器。 Tenda AC20 16.03.08.12版本存在注入漏洞,该漏洞源于/goform/telnet文件中websFormDefine函数存在命令注入。
Description (English)
Tenda AC20 is a wireless router of Tenda China. Version 1603.08.12 of Tenda AC16.03.08.12 contains an injection loophole that originates from the websForm Define function in/goform/telnet.
Hazard Level
High
Vulnerability Type
注入
Affected Vendor
腾达
Published
2025-08-17
Last Modified
2026-02-24
References
https://vuldb.com/?id.320358 https://vuldb.com/?submit.632232 https://www.tenda.com.cn/ https://github.com/ZZ2266/.github.io/blob/main/AC20/telnet/readme.md https://github.com/ZZ2266/.github.io/blob/main/AC20/telnet/readme.md#poc-exploit-steps https://vuldb.com/?ctiid.320358 https://www.exploit-db.com/exploits/52418 https://access.redhat.com/security/cve/cve-2025-9090 https://nvd.nist.gov/vuln/detail/CVE-2025-9090 https://cxsecurity.com/issue/WLB-2025080017
Share on: