CVE-2025-8810
BaseFortify
Publication date: 2025-08-10
Last updated on: 2025-08-14
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | ac20_firmware | 16.03.08.05 |
| tenda | ac20 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-8810 is a critical stack-based buffer overflow vulnerability in the Tenda AC20 router firmware version 16.03.08.05. It occurs in the strcpy function within the /goform/SetFirewallCfg endpoint when handling the 'firewallEn' parameter. The code checks if the input length is greater than 3 but then uses strcpy without proper upper-bound length validation, allowing an attacker to overflow a fixed-size stack buffer. This overflow can overwrite memory on the stack, leading to potential arbitrary code execution or denial of service. The attack can be launched remotely without authentication. [1, 2]
How can this vulnerability impact me? :
This vulnerability can impact you by allowing a remote attacker to execute arbitrary code or cause a denial of service on the affected Tenda AC20 router. This compromises the confidentiality, integrity, and availability of the device, potentially allowing attackers to take control of the router, disrupt network services, or intercept sensitive data. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can focus on monitoring network traffic for requests to the /goform/SetFirewallCfg endpoint with unusually long or malformed firewallEn parameters, which may indicate exploitation attempts. Since the vulnerability involves a stack-based buffer overflow triggered by the firewallEn argument, inspecting HTTP POST requests to this endpoint for payloads exceeding normal length is advisable. Specific commands are not provided in the resources, but using tools like curl or network intrusion detection systems (e.g., Snort or Suricata) with custom rules to detect oversized firewallEn parameters could help identify exploitation attempts. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected Tenda AC20 router running firmware version 16.03.08.05, as no known countermeasures or patches are available. Limiting remote access to the device, disabling remote management if possible, and monitoring for exploit attempts are recommended interim measures. Since the exploit is publicly available and the vulnerability can be exploited remotely without authentication, upgrading to a non-vulnerable device or firmware version is the most effective mitigation. [1]