CVE-2025-15356 | Tenda AC20 up to 16.03.08.12 /goform/PowerSaveSet sscanf powerSavingEn/time/powerSaveDelay/ledCloseType buffer overflow

Uncategorized
Yanac

A vulnerability marked as critical has been reported in Tenda AC20 up to 16.03.08.12. The impacted element is the function sscanf of the file /goform/PowerSaveSet. The manipulation of the argument powerSavingEn/time/powerSaveDelay/ledCloseType leads to buffer overflow.

This vulnerability is documented as CVE-2025-15356. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More