CVE-2025-10120 | Tenda AC20 up to 16.03.08.12 GetParentControlInfo strcpy mac buffer overflow

A vulnerability labeled as critical has been found in Tenda AC20 up to 16.03.08.12. The impacted element is the function strcpy of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in buffer overflow.

This vulnerability was named CVE-2025-10120. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More