CNNVD-202512-2590 Information

CNNVD ID

CNNVD-202512-2590

Related CVE

CVE-2025-14654

• CNNVD Published: 2025-12-14

Description (Chinese)

Tenda AC20是中国腾达（Tenda）公司的一款无线路由器。 Tenda AC20 16.03.08.12版本存在安全漏洞，该漏洞源于对文件/goform/setPptpUserList中参数list的错误操作，可能导致栈缓冲区溢出。

Description (English)

Tenda AC20 is a wireless router of Tenda China. Version 16.03.08.12 of Tenda AC16.03.08.12 contains a security loophole that stems from an error in the operation of the list of parameters in the document/goform/setPptpUseList, which could lead to a spill out of the fence.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

腾达

Published

2025-12-14

Last Modified

2026-02-24

References

https://github.com/Madgeaaaaa/MY_VULN_2/blob/main/Tenda/VULN12/AC20_SetPptpUserList.md https://vuldb.com/?id.336387 https://vuldb.com/?submit.712899 https://vuldb.com/?ctiid.336387 https://www.tenda.com.cn/ https://access.redhat.com/security/cve/cve-2025-14654