CNNVD-202512-5073 Information
CNNVD ID
CNNVD-202512-5073
Related CVE
- CNNVD Published: 2025-12-30
Description (Chinese)
Tenda AC20是中国腾达(Tenda)公司的一款无线路由器。 Tenda AC20 16.03.08.12及之前版本存在安全漏洞,该漏洞源于对文件/goform/PowerSaveSet中参数powerSavingEn/time/powerSaveDelay/ledCloseType的错误操作,可能导致缓冲区溢出。
Description (English)
Tenda AC20 is a wireless router of Tenda China. There is a security loophole in Tenda AC20 16.03.08.12 and earlier versions, which stems from the erroneous operation of the parameters PowerSavingEn/time/powerSaveDelay/ledCloseType in document/goform/PowerSaveSet, which could result in a spilling of the buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
腾达
Published
2025-12-30
Last Modified
2026-02-24
References
https://github.com/xyh4ck/iot_poc/blob/main/Tenda%20AC20_Buffer_Overflow/Tenda%20AC20_Buffer_Overflow.md#poc https://github.com/xyh4ck/iot_poc/tree/main/Tenda%20AC20_Buffer_Overflow https://vuldb.com/?ctiid.338742 https://vuldb.com/?id.338742 https://vuldb.com/?submit.726360 https://www.tenda.com.cn/
Share on: