CVE-2025-11327
BaseFortify
Publication date: 2025-10-06
Last updated on: 2025-10-07
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tenda | ac18_firmware | 15.03.05.19\(6318\) |
| tenda | ac18 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-11327 is a critical stack-based buffer overflow vulnerability in the Tenda AC18 router firmware version 15.03.05.19(6318). It occurs in the /goform/SetUpnpCfg endpoint when the "upnpEn" argument is manipulated improperly, causing a stack overflow. This flaw allows remote attackers to exploit the device without authentication, potentially leading to arbitrary code execution or denial of service. [1, 2]
How can this vulnerability impact me? :
This vulnerability can be exploited remotely to compromise the affected Tenda AC18 router, leading to significant risks including unauthorized control over the device, arbitrary code execution, denial of service, and loss of confidentiality, integrity, and availability of the router. Since the exploit is publicly available and easy to execute, affected devices are at high risk if not mitigated. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by monitoring or testing the /goform/SetUpnpCfg endpoint on the Tenda AC18 router firmware version 15.03.05.19(6318), specifically by sending crafted requests manipulating the "upnpEn" parameter to check for abnormal behavior such as crashes or unexpected responses. Since the exploit is publicly available, penetration testing tools or scripts from the public GitHub repository related to this vulnerability can be used to detect it. No specific detection commands are provided in the resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
There are no known mitigations or countermeasures identified for this vulnerability. The recommended immediate step is to replace the affected Tenda AC18 router with an alternative device. Additionally, restricting remote access to the router's management interfaces and disabling UPnP configuration if possible may reduce exposure, but no official fixes or patches are available as per the provided information. [1]