Security Advisory

CVE-2025-9087

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-16 22:32:07

Last updated 2025-08-18 17:59:50

Assigner VulDB

State PUBLISHED

Description

A vulnerability has been found in Tenda AC20 16.03.08.12. This affects the function set_qosMib_list of the file /goform/SetNetControlList of the component SetNetControlList Endpoint. The manipulation of the argument list leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗