CRITICAL🇵🇱 Wersja polska

CVE-2025-25674

CVSS 9.8v3.1pub. 2025-02-20upd. 2025-03-17

Tenda AC10 V1.0 V15.03.06.23 is vulnerable to Buffer Overflow in form_fast_setting_wifi_set via the parameter ssid.

🤖 AI Analysis
How it works

The vulnerability results from the lack of proper validation of input data length for the ssid parameter passed to the form_fast_setting_wifi_set function. An attacker can send a crafted network request to the device containing an excessively long value of the ssid parameter, which leads to a buffer overflow in memory. This results in potential overwriting of critical memory areas and the possibility of executing arbitrary code.

Impact

The attacker gains full control over the device, which includes violation of confidentiality, integrity, and system availability. Remote code execution (RCE) is possible with the privileges of the process handling the request.

Mitigation & patch

Apply patches available from the manufacturer according to the references. If an update is not available, it is recommended to isolate the device from unauthorized network access, restrict access to the administrative interface to trusted hosts only, and consider replacing the device with a model that has active manufacturer support.

Who is affected

Tenda AC10 V1.0 with firmware version V15.03.06.23

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tenda Ac10

    HW
    Tenda
    1.0
  • Tenda Ac10 Firmware

    OS
    Tenda
    15.03.06.23
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2018-14558CRITICAL9.8⚠ KEVten sam produkt

An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firm...

CVE-2025-67073CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC10 – RCE i DoS przez pole serviceName

CVE-2025-45779CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w Tenda AC10 — handler formSetPPTPUserList

CVE-2025-25456CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Tenda AC10 – podatność w funkcji AdvSetMacMtuWan (mac2)

CVE-2025-25675CRITICAL9.8PL ✓ten sam produkt

Command injection w Tenda AC10 — zdalne wykonanie kodu przez formexeCommand