CRITICAL🇵🇱 Wersja polska

CVE-2025-25456

CVSS 9.8v3.1pub. 2025-04-15upd. 2025-04-22

Tenda AC10 V4.0si_V16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via mac2.

🤖 AI Analysis
How it works

The vulnerability is a classic buffer overflow (CWE-120) — lack of proper validation of input data length for the mac2 parameter sent to the AdvSetMacMtuWan function. An attacker can provide specially crafted data that will overflow the stack buffer, overwriting critical memory areas. The attack is possible remotely, without authentication and without user interaction, making it particularly dangerous in network-exposed environments.

Impact

An attacker can gain full control of the device, leading to a breach of confidentiality, integrity and availability of the system, including potential arbitrary code execution (RCE) or permanent damage to the device.

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until an update is released, it is recommended to restrict access to the device's administrative interface only to trusted local networks and block access from the Internet using a firewall.

Who is affected

Tenda AC10 firmware version V4.0si_V16.03.10.20

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tenda Ac10

    HW
    Tenda
    4.0
  • Tenda Ac10 Firmware

    OS
    Tenda
    16.03.10.20
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2018-14558CRITICAL9.8⚠ KEVten sam produkt

An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firm...

CVE-2025-67073CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC10 – RCE i DoS przez pole serviceName

CVE-2025-45779CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w Tenda AC10 — handler formSetPPTPUserList

CVE-2025-25674CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w Tenda AC10 – parametr ssid w form_fast_setting_wifi_set

CVE-2025-25675CRITICAL9.8PL ✓ten sam produkt

Command injection w Tenda AC10 — zdalne wykonanie kodu przez formexeCommand