Metrics
Affected Vendors & Products
Thu, 21 Aug 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Tenda ac20 Firmware
|
|
CPEs | cpe:2.3:h:tenda:ac20:-:*:*:*:*:*:*:* cpe:2.3:o:tenda:ac20_firmware:16.03.08.12:*:*:*:*:*:*:* |
|
Vendors & Products |
Tenda ac20 Firmware
|
Mon, 18 Aug 2025 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Tenda
Tenda ac20 |
|
Vendors & Products |
Tenda
Tenda ac20 |
Mon, 18 Aug 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Sun, 17 Aug 2025 02:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was identified in Tenda AC20 16.03.08.12. Affected is the function websFormDefine of the file /goform/telnet of the component Telnet Service. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. | |
Title | Tenda AC20 Telnet Service telnet websFormDefine command injection | |
Weaknesses | CWE-74 CWE-77 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-08-18T17:46:22.525Z
Reserved: 2025-08-16T06:06:22.874Z
Link: CVE-2025-9090

Updated: 2025-08-18T17:44:48.049Z

Status : Analyzed
Published: 2025-08-17T03:15:26.527
Modified: 2025-08-21T16:10:48.110
Link: CVE-2025-9090

No data.

Updated: 2025-08-18T20:46:36Z