| Title | Tenda AC20 Router Affected firmware version: <= V16.03.08.12 Buffer Overflow |
|---|
| Description | A buffer overflow vulnerability was discovered on the latest version of the Tengda AC20 router, V16.03.08.12, where an attacker sent a well-crafted http post packet to the request path /goform/WifiExtraSet, triggering a denial of service attack or even RCE because there was no boundary check on the array, resulting in a stack overflow. |
|---|
| Source | ⚠️ https://github.com/DavCloudz/cve/blob/main/Tenda/Tengda%20AC20%20Router%20WifiExtraSet%20Buffer%20Overflow%20Vulnerability.md |
|---|
| User | Yun Zhang (UID 90491) |
|---|
| Submission | 11/04/2025 09:38 (6 months ago) |
|---|
| Moderation | 11/16/2025 11:47 (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 332593 [Tenda AC20 up to 16.03.08.12 /goform/WifiExtraSet wpapsk_crypto buffer overflow] |
|---|
| Points | 18 |
|---|