CVE-2025-14656 | Tenda AC20 16.03.08.12 /goform/openSchedWifi httpd schedStartTime/schedEndTime buffer overflow

December 13, 2025 Yanac

A vulnerability labeled as critical has been found in Tenda AC20 16.03.08.12. This affects the function httpd of the file /goform/openSchedWifi. Executing manipulation of the argument schedStartTime/schedEndTime can lead to buffer overflow.

This vulnerability appears as CVE-2025-14656. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More