CVE-2025-25453 – This vulnerability allows attackers to cause a ... (How to Fix)

📋 TL;DR

This vulnerability allows attackers to cause a buffer overflow in Tenda AC10 routers via the AdvSetMacMtuWan function's serviceName2 parameter. Successful exploitation could lead to denial of service or potentially remote code execution. Only users of Tenda AC10 V4.0si_V16.03.10.20 firmware are affected.

💻 Affected Systems

Products:

Tenda AC10

Versions: V4.0si_V16.03.10.20

Operating Systems: Embedded router firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects the specific firmware version mentioned; other versions may be unaffected

📦 What is this software?

Ac10 Firmware by Tenda

View all CVEs affecting Ac10 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution allowing full router compromise, credential theft, and network pivoting

🟠

Likely Case

Router crash and denial of service requiring physical reset

🟢

If Mitigated

Limited impact if network segmentation isolates routers and monitoring detects exploitation attempts

🌐 Internet-Facing: HIGH - Routers are typically internet-facing devices directly exposed to attackers

🏢 Internal Only: LOW - This vulnerability requires access to the router's web interface, which is typically internet-facing

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploit requires authentication to the router's web interface; public proof-of-concept demonstrates buffer overflow but not full RCE

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None known

Restart Required: Yes

Instructions:

1. Check Tenda's official website for firmware updates
2. If update available, download and flash via router web interface
3. Factory reset after update to ensure clean configuration

🔧 Temporary Workarounds

Disable remote management

all

Prevent external access to router web interface

Change default credentials

all

Use strong, unique passwords for router administration

🧯 If You Can't Patch

Segment router management interface to internal network only
Implement network monitoring for buffer overflow attempts

🔍 How to Verify

Check if Vulnerable:

Check router firmware version in web interface under System Status or similar section

Check Version:

No CLI command; check via router web interface at 192.168.0.1 or similar

Verify Fix Applied:

Verify firmware version has changed from V16.03.10.20 to a newer version

📡 Detection & Monitoring

Log Indicators:

Router crash/reboot logs
Unusual POST requests to AdvSetMacMtuWan endpoint

Network Indicators:

Unusual traffic patterns to router management interface
Router becoming unresponsive

SIEM Query:

source="router_logs" AND ("crash" OR "reboot" OR "AdvSetMacMtuWan")

📊 Metadata

CVE ID: CVE-2025-25453

CVSS v3 Score: 4.6 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

CWE: CWE-120

EPSS Score: 0.18% exploit probability (39.6th percentile)

Published: April 15, 2025

Last Updated: April 22, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-25453, you might also want to check these: