CVE-2025-9087 | Tenda AC20 16.03.08.12 SetNetControlList Endpoint set_qosMib_list stack-based overflow

Inserito da Angelo Barbosa | Ago 16, 2025 | CVE

A vulnerability was found in Tenda AC20 16.03.08.12. It has been declared as critical. This affects the function set_qosMib_list of the file /goform/SetNetControlList of the component SetNetControlList Endpoint. The manipulation of the argument list leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2025-9087. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9087 | Tenda AC20 16.03.08.12 SetNetControlList Endpoint set_qosMib_list stack-based overflow

Post correlati

CVE-2024-40724 | Open Asset Import Library Assimp up to 5.4.1 File heap-based overflow

CVE-2024-26898 | Linux Kernel up to 6.8.1 aoecmd_cfg_pkts use after free

CVE-2025-44180 | PHPGurukul Vehicle Record Management System 1.0 /edit-brand.php bid cross site scripting

CVE-2025-22862 | Fortinet FortiOS/FortiProxy Automation Stitch authentication bypass (FG-IR-24-385)