CVE-2025-51082: Tenda AC8V4 Router Vulnerable to Stack Overflow via Timezone Setting
The Tenda AC8V4 router, specifically firmware version V16.03.34.06, is susceptible to a stack overflow vulnerability. This flaw can be triggered by manipulating the 'timeZone' argument in the `/goform/fast_setting_wifi_set` endpoint, potentially leading to a denial of service (DoS) condition.
Vulnerability Details
- CVE ID: CVE-2025-51082
- Description: A stack overflow vulnerability exists in Tenda AC8V4 V16.03.34.06 within the `/goform/fast_setting_wifi_set` endpoint. The manipulation of the `timeZone` argument leads to a buffer overflow on the stack.
- CVSS Score: 5.3 (Medium)
- CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
- CVSS Explanation: This vulnerability has a medium severity rating. The attack vector is network-based (AV:N), meaning it can be exploited remotely. The attack complexity is low (AC:L), and no privileges are required (PR:N). No user interaction is needed (UI:N). The scope is unchanged (S:U), and while confidentiality and integrity are not impacted, availability is impacted at a low level (A:L). This means successful exploitation could lead to a denial-of-service condition, making the router temporarily unavailable.
- Exploit Requirements: An attacker needs network access to the router, typically through its web interface. No authentication is explicitly required to trigger the vulnerability based on the provided information, though this requires further verification.
Affected Products
- Vendor: Tenda
- Product: AC8V4
- Version: V16.03.34.06
CWE
- CWE ID: CWE-121
- CWE Name: Stack-based Buffer Overflow
- CWE Explanation: A stack-based buffer overflow occurs when a program writes more data to a buffer located on the stack than it can hold. This can overwrite adjacent memory locations, potentially leading to a crash or, in some cases, arbitrary code execution.
Timeline of Events
- 2025-07-24: CVE ID assigned and vulnerability published.
- 2025-07-25: CVE details updated.
Exploitability & Real-World Risk
The exploitability of this vulnerability appears to be relatively high, given the low attack complexity and lack of required privileges. In a real-world scenario, an attacker could potentially exploit this vulnerability to cause a denial of service, disrupting internet connectivity for users of the affected Tenda AC8V4 router. This could be particularly problematic in environments where reliable network access is critical.
Recommendations
- Apply Firmware Updates: Check the Tenda website for updated firmware versions that address this vulnerability. Applying the latest firmware is the most effective way to mitigate the risk.
- Monitor Network Traffic: Monitor network traffic for suspicious activity that may indicate an attempted exploit.
- Consider Router Replacement: If a patch is unavailable, consider replacing the router with a more secure model.
Technical Insight
The vulnerability stems from insufficient bounds checking when handling the `timeZone` argument in the `/goform/fast_setting_wifi_set` endpoint. By providing an overly long string for the timezone, an attacker can overwrite memory on the stack, potentially leading to a crash and denial of service.
Credit to Researcher(s)
The vulnerability was discovered by an independent security researcher.
References
Tags
#Tenda #AC8V4 #Router #StackOverflow #CVE-2025-51082 #Vulnerability #Security #DenialofService #Firmware
Summary: A stack overflow vulnerability exists in Tenda AC8V4 router (V16.03.34.06) via the timezone setting, potentially leading to a denial-of-service (DoS) condition. Users are advised to apply firmware updates or consider router replacement.
CVE ID: CVE-2025-51082
Risk Analysis: Successful exploitation can lead to a denial of service, disrupting network connectivity for the router's users.
Recommendation: Apply the latest firmware update from Tenda or consider replacing the router.
Timeline
- 2025-07-24: CVE ID assigned and vulnerability published.
- 2025-07-25: CVE details updated.