ГлавнаяУязвимости → CVE-2025-14655
8.8высокая

CVE-2025-14655

Описание

A security flaw has been discovered in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing a manipulation of the argument rebootTime results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.

Затрагиваемое ПО
Tenda Ac20 firmwareTenda Ac20
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Madgeaaaaa/MY_VULN_2/blob/main/Tenda/VULN13/AC20_SetSysAutoRebbotCfg.mdhttps://vuldb.com/?ctiid.336388https://vuldb.com/?id.336388https://vuldb.com/?submit.712910https://www.tenda.com.cn/