Buffer Overflow Vulnerability in Tenda O4 Router
CVE-2025-25662

9.8CRITICAL

Key Information:

Vendor
Tenda
Status
Tenda O4 Router
Vendor
CVE Published:
20 February 2025

Summary

The Tenda O4 Router version V3.0 V1.0.0.10(2936) is susceptible to a Buffer Overflow vulnerability in the SafeSetMacFilter function located in the file /goform/setMacFilterList. This flaw can be exploited via compromised parameters in the remark/type/time arguments, potentially allowing an attacker to execute arbitrary code or cause a denial of service.

References

https://github.com/jangfan/my-vuln/blob/main/Tenda/O4V3/s...

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.