A vulnerability was found in Tenda AC20 16.03.08.12. This vulnerability affects the function save_virtualser_data of the file /goform/formSetVirtualSer. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 21 Aug 2025 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Tenda ac20 Firmware
Weaknesses CWE-787
CPEs cpe:2.3:h:tenda:ac20:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:ac20_firmware:16.03.08.12:*:*:*:*:*:*:*
Vendors & Products Tenda ac20 Firmware

Mon, 18 Aug 2025 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Tenda
Tenda ac20
Vendors & Products Tenda
Tenda ac20

Sat, 16 Aug 2025 23:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in Tenda AC20 16.03.08.12. This vulnerability affects the function save_virtualser_data of the file /goform/formSetVirtualSer. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Title Tenda AC20 formSetVirtualSer save_virtualser_data stack-based overflow
Weaknesses CWE-119
CWE-121
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2025-08-18T17:59:09.706Z

Reserved: 2025-08-16T06:06:16.797Z

Link: CVE-2025-9088

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2025-08-16T23:15:26.523

Modified: 2025-08-21T16:12:57.193

Link: CVE-2025-9088

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-08-18T20:46:37Z