CVE-2025-7586
BaseFortify
Publication date: 2025-07-14
Last updated on: 2025-07-17
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | ac500_firmware | 2.0.1.9\(1307\) |
| tenda | ac500 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-7586 is a critical stack-based buffer overflow vulnerability in the Tenda AC500 router firmware version 2.0.1.9(1307). It occurs in the function formSetAPCfg via the /goform/setWtpData endpoint when the argument radio_2g_1 is manipulated with crafted input. This overflow can cause memory corruption, potentially allowing an attacker to execute arbitrary code or cause a denial of service. The vulnerability can be exploited remotely without authentication. [1, 2]
How can this vulnerability impact me? :
This vulnerability can severely impact you by allowing remote attackers to compromise the confidentiality, integrity, and availability of the affected Tenda AC500 router. Exploitation can lead to arbitrary code execution, enabling attackers to take control of the device, or cause denial of service, disrupting network operations. Since it requires no authentication and can be exploited remotely, it poses a high security risk. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can be performed by monitoring or testing the /goform/setWtpData endpoint for suspicious or crafted requests manipulating the 'radio_2g_1' parameter that could trigger the stack-based buffer overflow. Since a proof-of-concept exploit is publicly available, security teams can use it to verify if the device is vulnerable. Specific commands are not provided in the resources, but network traffic inspection tools or custom scripts targeting this endpoint and parameter could be used to detect exploitation attempts. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
No known mitigations or countermeasures have been identified for this vulnerability. It is recommended to consider replacing the affected Tenda AC500 router running firmware version 2.0.1.9(1307) to mitigate the risk. Additionally, restricting remote access to the device and monitoring for exploitation attempts may help reduce exposure until a patch or fix is available. [2]