CVE-2025-7747
BaseFortify
Publication date: 2025-07-17
Last updated on: 2025-07-18
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | fh451_firmware | 1.0.0.9 |
| tenda | fh451 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-7747 is a critical buffer overflow vulnerability in the Tenda FH451 router firmware version 1.0.0.9. It occurs in the fromWizardHandle function of the POST request handler at the /goform/WizardHandle endpoint. The vulnerability arises because the PPW argument is copied into a fixed-size buffer without proper bounds checking, leading to a stack-based buffer overflow. This flaw can be exploited remotely without authentication, allowing attackers to crash the device or execute arbitrary code by manipulating the return address through techniques like Return-Oriented Programming (ROP). [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected Tenda FH451 router running firmware version 1.0.0.9 with an alternative device or firmware version that is not vulnerable, as no known mitigations or patches are available. Limiting network exposure of the router's management interface by restricting access to trusted networks or using firewall rules can reduce the risk of remote exploitation. Monitoring for exploit attempts and disabling remote management if possible are also recommended. [1]
How can this vulnerability impact me? :
This vulnerability can severely impact users by allowing remote attackers to cause denial of service (DoS) by crashing the router or to gain unauthorized control through privilege escalation or remote code execution (RCE). This compromises the confidentiality, integrity, and availability of the affected device, potentially allowing attackers to manipulate network traffic, disrupt services, or use the device as a foothold for further attacks. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can be performed by monitoring for POST requests to the endpoint /goform/WizardHandle containing the PPW parameter. Network intrusion detection systems (NIDS) or web application firewalls (WAF) can be configured to alert on unusually large or malformed PPW parameters in POST requests to this endpoint. Additionally, checking the router firmware version to confirm if it is Tenda FH451 version 1.0.0.9 can help identify vulnerable devices. Specific commands might include using curl or wget to test the endpoint, for example: curl -X POST -d "PPW=AAAA..." http://<router-ip>/goform/WizardHandle to see if the device crashes or behaves abnormally. However, no specific detection commands or signatures are provided in the resources. [1, 2]