A weakness has been identified in Tenda AC20 16.03.08.05. This vulnerability affects unknown code of the file /goform/fromAdvSetMacMtuWan. This manipulation of the argument wanMTU causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 04 Sep 2025 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Tenda ac20 Firmware
Weaknesses CWE-787
CPEs cpe:2.3:h:tenda:ac20:-:*:*:*:*:*:*:*
cpe:2.3:o:tenda:ac20_firmware:16.03.08.5:*:*:*:*:*:*:*
Vendors & Products Tenda ac20 Firmware

Tue, 02 Sep 2025 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Tenda
Tenda ac20
Vendors & Products Tenda
Tenda ac20

Tue, 02 Sep 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 01 Sep 2025 19:15:00 +0000

Type Values Removed Values Added
Description A weakness has been identified in Tenda AC20 16.03.08.05. This vulnerability affects unknown code of the file /goform/fromAdvSetMacMtuWan. This manipulation of the argument wanMTU causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited.
Title Tenda AC20 fromAdvSetMacMtuWan stack-based overflow
Weaknesses CWE-119
CWE-121
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2025-09-02T15:09:01.786Z

Reserved: 2025-09-01T10:10:40.574Z

Link: CVE-2025-9791

cve-icon Vulnrichment

Updated: 2025-09-02T14:14:00.251Z

cve-icon NVD

Status : Analyzed

Published: 2025-09-01T19:15:32.160

Modified: 2025-09-04T16:20:55.250

Link: CVE-2025-9791

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-09-02T15:23:11Z