CVE-2025-8160 | Tenda AC20 up to 16.03.08.12 httpd /goform/SetSysTimeCfg timeZone buffer overflow

Inserito da Angelo Barbosa | Lug 25, 2025 | CVE

A vulnerability classified as critical has been found in Tenda AC20 up to 16.03.08.12. Affected is an unknown function of the file /goform/SetSysTimeCfg of the component httpd. The manipulation of the argument timeZone leads to buffer overflow.

This vulnerability is traded as CVE-2025-8160. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-8160 | Tenda AC20 up to 16.03.08.12 httpd /goform/SetSysTimeCfg timeZone buffer overflow

Post correlati

CVE-2025-7979 | Ashlar-Vellum Graphite VC6 File Parser stack-based overflow

CVE-2024-37308 | XjSv Cooked Pro Recipe Plugin up to 1.7.15.4 on WordPress _recipe_settings[post_title] cross site scripting (GHSA-9vfv-c966-jwrv)

CVE-2023-49197 | Apasionados DoFollow Case by Case Plugin up to 3.4.2 on WordPress cross-site request forgery

CVE-2024-52021 | Netgear R8500 1.0.2.160 bsw_fix.cgi bsw_fix wan_gateway command injection