VYPR
Unrated severityNVD Advisory· Published Nov 17, 2025· Updated Feb 24, 2026

Tenda AC20 WifiExtraSet buffer overflow

CVE-2025-13258

Description

A vulnerability was detected in Tenda AC20 up to 16.03.08.12. The impacted element is an unknown function of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto results in buffer overflow. The attack can be launched remotely. The exploit is now public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Tenda/Ac20v52 versions
    cpe:2.3:o:tenda:ac20_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:tenda:ac20_firmware:*:*:*:*:*:*:*:*range: 16.03.08.0
    • (no CPE)range: <=16.03.08.12

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.