CVE-2025-14655 | Tenda AC20 16.03.08.12 httpd SetSysAutoRebbotCfg formSetRebootTimer rebootTime stack-based overflow

Inserito da Angelo Barbosa | Dic 13, 2025 | CVE

A vulnerability identified as critical has been detected in Tenda AC20 16.03.08.12. The impacted element is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg of the component httpd. Performing manipulation of the argument rebootTime results in stack-based buffer overflow.

This vulnerability is reported as CVE-2025-14655. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2025-14655 | Tenda AC20 16.03.08.12 httpd SetSysAutoRebbotCfg formSetRebootTimer rebootTime stack-based overflow

Post correlati

CVE-2024-45150 | Adobe Dimension up to 4.0.3 out-of-bounds write (apsb24-74)

CVE-2024-7690 | DN Popup Plugin up to 1.2.2 on WordPress Setting cross-site request forgery

CVE-2024-40762 | SonicWALL SonicOS SSL VPN weak prng (SNWLID-2025-0003)

CVE-2024-39393 | Adobe InDesign Desktop up to 18.5.2/19.4 out-of-bounds (apsb24-56)