Unrated severityNVD Advisory· Published Nov 20, 2025· Updated Feb 24, 2026
Tenda AC21 SetSysTimeCfg stack-based overflow
CVE-2025-13446
Description
A vulnerability has been found in Tenda AC21 16.03.08.16. This vulnerability affects unknown code of the file /goform/SetSysTimeCfg. The manipulation of the argument timeZone/time leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- github.com/Madgeaaaaa/MY_VULN_2/blob/main/Tenda/VULN9.mdmitreexploit
- vuldb.commitrethird-party-advisory
- vuldb.commitrethird-party-advisory
- github.com/Madgeaaaaa/MY_VULN_2/blob/main/Tenda/VULN8.mdmitrerelated
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
- www.tenda.com.cnmitreproduct
News mentions
0No linked articles in our index yet.