CVE-2025-14654

Vulnerability Description

A vulnerability was identified in Tenda AC20 16.03.08.12. The affected element is the function formSetPPTPUserList of the file /goform/setPptpUserList of the component httpd. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used.

Vulnerability Details

Published Date

December 14, 2025

Last Modified

December 19, 2025

Source

NVD

CVE-2025-14654

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment