CVE-2025-25668

CriticalPublic PoC

Published: 20 February 2025

Published

20 February 2025

Modified

17 March 2025

KEV Added

—

Patch

—

CVSS Score 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0009 25.7th percentile

Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Description

Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.

Security Summary

CVE-2025-25668 is a stack overflow vulnerability in the Tenda AC8V4 router firmware version V16.03.34.06. The flaw occurs in the sub_47D878 function when processing the shareSpeed parameter, classified under CWE-120 (Buffer Copy without Checking Size of Input). It was published on 2025-02-20.

The vulnerability carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating it is exploitable over the network with low complexity, no privileges, no user interaction, and unchanged impact scope. Remote attackers require only network access to trigger the stack overflow, potentially achieving high confidentiality, integrity, and availability impacts such as arbitrary code execution or denial of service.

Mitigation details are available in the referenced advisory at https://github.com/jangfan/my-vuln/blob/main/Tenda/AC8V4/setMacFilterCfg.md.

Details

CWE(s): CWE-120

Affected Products

tenda

ac8 firmware

16.03.34.06

MITRE ATT&CK Enterprise Techniques

T1190 Exploit Public-Facing Application Initial Access

Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.

attack.mitre.org →

Why these techniques?

Stack overflow vulnerability in Tenda AC8V4 router firmware via web parameter (shareSpeed) enables remote exploitation of a public-facing application for potential code execution.

References

https://github.com/jangfan/my-vuln/blob/main/Tenda/AC8V4/setMacFilterCfg.md
Broken Link, Exploit, Third Party Advisory · cve@mitre.org