CVE-2025-9087 – Tenda AC20 Stack-Based Buffer Overflow

August 16, 2025

CVE ID : CVE-2025-9087

Published : Aug. 16, 2025, 11:15 p.m. | 2 hours, 54 minutes ago

Description : A vulnerability has been found in Tenda AC20 16.03.08.12. This affects the function set_qosMib_list of the file /goform/SetNetControlList of the component SetNetControlList Endpoint. The manipulation of the argument list leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 9.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-9089 – Tenda AC20 Stack-Based Buffer Overflow Vulnerability

Next Article CVE-2025-9088 – Tenda AC20 Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-7208 – Plan9port X509 Heap Buffer Overflow Vulnerability

July 9, 2025

CVE ID : CVE-2025-7208

Published : July 9, 2025, 1:15 a.m. | 5 hours, 22 minutes ago

Description : A vulnerability was found in 9fans plan9port up to 9da5b44. It has been classified as critical. This affects the function edump in the library /src/plan9port/src/libsec/port/x509.c. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The identifier of the patch is b3e06559475b0130a7a2fb56ac4d131d13d2012f. It is recommended to apply a patch to fix this issue.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Psychology Of Color In UX Design And Digital Products

This week in AI dev tools: Claude Sonnet 4’s larger context window, ChatGPT updates, and more (August 15, 2025)

Sentry launches MCP monitoring tool

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

Your smart home device just got a performance and security boost for free

Ultrahuman brings advanced cycle and ovulation tracking to its smart ring

DistroWatch Weekly, Issue 1135

14 secret phone codes that unlock hidden features on your Android and iPhone

Air Quality Prediction System using Python ML

Air Quality Prediction System using Python ML

AI’s Hidden Thirst: The Water Behind Tech

Minesweeper game in 100 lines of pure JavaScript – easy tutorial

DistroWatch Weekly, Issue 1135

DistroWatch Weekly, Issue 1135

Ubuntu’s New “Dangerous” Daily Builds – What Are They?

gofmt – formats Go programs

CVE-2025-9087 – Tenda AC20 Stack-Based Buffer Overflow

CVE-2025-9090 – Tenda Telnet Service Command Injection

CVE-2025-9091 – Tenda AC20 Hard-Coded Credentials Vulnerability

CVE-2025-50213 – Apache Airflow Providers Snowflake Special Element Injection

CodeSOD: Going on a teDa

CVE-2025-45582 – Apache GNU Tar Directory Traversal Overwrite Vulnerability

CVE-2025-5570 – WordPress AI Engine Plugin Stored Cross-Site Scripting vulnerabilit

CVE-2025-7208 – Plan9port X509 Heap Buffer Overflow Vulnerability

RUMOR: Xbox is working on Classics program with Xenia to revive original & 360 games

CVE-2025-6778 – Food Distributor Site Cross-Site Scripting Vulnerability

CVE-2025-4829 – TOTOLINK A702R/A3002R/A3002RU HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-9087 – Tenda AC20 Stack-Based Buffer Overflow

Related Posts