CRITICAL🇵🇱 Wersja polska

CVE-2025-25668

CVSS 9.8v3.1pub. 2025-02-20upd. 2025-03-17

Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter in the sub_47D878 function.

🤖 AI Analysis
How it works

The attacker sends a specially crafted network request containing an excessively long value of the shareSpeed parameter, which is processed by the sub_47D878 function without data size verification. The excess data overflows the stack buffer (stack overflow), allowing the attacker to overwrite the function's return address or other critical structures. As a result, the attacker can hijack the program's execution flow and execute arbitrary code.

Impact

An unauthenticated remote attacker can gain full control over the device by executing arbitrary code with process privileges (potentially root), which threatens the confidentiality, integrity, and availability of the system.

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until an update is released, it is recommended to restrict access to the device's administrative interface to trusted IP addresses only and disable remote management from the WAN side.

Who is affected

Tenda AC8V4 with firmware version V16.03.34.06

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tenda Ac8

    HW
    Tenda
    v4
  • Tenda Ac8 Firmware

    OS
    Tenda
    16.03.34.06
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-29100CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w Tenda AC8 — funkcja fromSetRouteStatic

CVE-2025-25667CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC8V4 — stack overflow w funkcji get_parentControl_list_Info

CVE-2025-25664CRITICAL9.8PL ✓ten sam produkt

Tenda AC8V4 — stack overflow przez parametr shareSpeed (RCE)

CVE-2025-25663CRITICAL9.8PL ✓ten sam produkt

Tenda AC8V4 — stack-based buffer overflow w funkcji WifiExtraSet

CVE-2024-57703CRITICAL9.8PL ✓ten sam produkt

Tenda AC8v4 — stack overflow w funkcji setSchedWifi (schedEndTime)