WEB Tenda AC20 setMacFilterCfg deviceList parameter Buffer Overflow (CVE-2025-9046)

Rule ID

1237866

Severity

High

Description

A vulnerability was identified in Tenda AC20 16.03.08.12. This issue affects the function sub_46A2AC of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow.

Impact

Denial of service

Recommendation

Update vendor's patch.

IPS Category

Buffer Overflow

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2025-9046

CVE-2025-7544

T0814

Keywords

N/A

Date Created

2026/01/20

Last Updated

2026/03/02