Details of VAR-202509-0311

ID

VAR-202509-0311

CVE

CVE-2025-10120

TITLE

Shenzhen Tenda Technology Co.,Ltd. of AC20 Buffer error vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2025-013657

DESCRIPTION

A vulnerability was detected in Tenda AC20 up to 16.03.08.12. The impacted element is the function strcpy of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be used. Shenzhen Tenda Technology Co.,Ltd. of AC20 The firmware contains a buffer error vulnerability and a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. An attacker could exploit this vulnerability by remotely sending specially crafted data to trigger the buffer overflow, thereby executing arbitrary code or causing the system to crash

Trust: 2.16

sources: NVD: CVE-2025-10120 // JVNDB: JVNDB-2025-013657 // CNVD: CNVD-2025-21169

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-21169

AFFECTED PRODUCTS

vendor:	tenda	model:	ac20	scope:	lte	version:	16.03.08.12	Trust: 1.0
vendor:	tenda	model:	ac20	scope:	lte	version:	ac20 firmware 16.03.08.12 and earlier	Trust: 0.8
vendor:	tenda	model:	ac20	scope:	-	version:	-	Trust: 0.8
vendor:	tenda	model:	ac20	scope:	eq	version:	-	Trust: 0.8
vendor:	tenda	model:	ac20	scope:	lte	version:	<=16.03.08.12	Trust: 0.6

sources: CNVD: CNVD-2025-21169 // JVNDB: JVNDB-2025-013657 // NVD: CVE-2025-10120

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com:	CVE-2025-10120
value:	HIGH
Trust: 1.0
OTHER:	JVNDB-2025-013657
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2025-21169
value:	HIGH
Trust: 0.6

cna@vuldb.com:	CVE-2025-10120
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
OTHER:	JVNDB-2025-013657
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2025-21169
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

cna@vuldb.com:	CVE-2025-10120
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0
OTHER:	JVNDB-2025-013657
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2025-21169 // JVNDB: JVNDB-2025-013657 // NVD: CVE-2025-10120

PROBLEMTYPE DATA

problemtype:	CWE-119	Trust: 1.0
problemtype:	CWE-120	Trust: 1.0
problemtype:	Buffer error (CWE-119) [ others ]	Trust: 0.8
problemtype:	Classic buffer overflow (CWE-120) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2025-013657 // NVD: CVE-2025-10120

EXTERNAL IDS

db:	NVD	id:	CVE-2025-10120	Trust: 3.2
db:	VULDB	id:	323089	Trust: 2.4
db:	JVNDB	id:	JVNDB-2025-013657	Trust: 0.8
db:	CNVD	id:	CNVD-2025-21169	Trust: 0.6

sources: CNVD: CNVD-2025-21169 // JVNDB: JVNDB-2025-013657 // NVD: CVE-2025-10120

REFERENCES

url:	https://vuldb.com/?id.323089	Trust: 2.4
url:	https://vuldb.com/?submit.645680	Trust: 2.4
url:	https://github.com/cymiao1978/cve/blob/main/4.md	Trust: 2.4
url:	https://github.com/cymiao1978/cve/blob/main/4.md#poc	Trust: 2.4
url:	https://www.tenda.com.cn/	Trust: 2.4
url:	https://vuldb.com/?ctiid.323089	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2025-10120	Trust: 0.8

sources: CNVD: CNVD-2025-21169 // JVNDB: JVNDB-2025-013657 // NVD: CVE-2025-10120

SOURCES

db:	CNVD	id:	CNVD-2025-21169
db:	JVNDB	id:	JVNDB-2025-013657
db:	NVD	id:	CVE-2025-10120

LAST UPDATE DATE

2025-09-13T23:24:30.179000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-21169	date:	2025-09-12T00:00:00
db:	JVNDB	id:	JVNDB-2025-013657	date:	2025-09-11T02:08:00
db:	NVD	id:	CVE-2025-10120	date:	2025-09-10T16:41:54.140

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-21169	date:	2025-09-12T00:00:00
db:	JVNDB	id:	JVNDB-2025-013657	date:	2025-09-11T00:00:00
db:	NVD	id:	CVE-2025-10120	date:	2025-09-09T02:15:38.293