CVE-2025-8980 – This vulnerability in Tenda G1 routers allows a... (How to Fix)

Q: What is the severity of CVE-2025-8980?

CVE-2025-8980 has a CVSS score of 6.6 (MEDIUM). This vulnerability in Tenda G1 routers allows attackers to upload malicious firmware due to insufficient authentication checks in the firmware update handler. Attackers could potentially compromise the router's functionality or gain persistent access. Only Tenda G1 routers running firmware version 16.01.7.8(3660) are affected.

📋 TL;DR

This vulnerability in Tenda G1 routers allows attackers to upload malicious firmware due to insufficient authentication checks in the firmware update handler. Attackers could potentially compromise the router's functionality or gain persistent access. Only Tenda G1 routers running firmware version 16.01.7.8(3660) are affected.

💻 Affected Systems

Products:

Tenda G1

Versions: 16.01.7.8(3660)

Operating Systems: Embedded router firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects routers with firmware update functionality enabled and accessible.

📦 What is this software?

G1 Firmware by Tenda

View all CVEs affecting G1 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete router compromise allowing persistent backdoor installation, network traffic interception, and lateral movement to connected devices.

🟠

Likely Case

Router firmware corruption leading to denial of service or installation of malicious firmware with limited persistence.

🟢

If Mitigated

No impact if firmware updates are disabled or network access is restricted.

🌐 Internet-Facing: HIGH - Attack can be launched remotely against internet-exposed routers.

🏢 Internal Only: MEDIUM - Requires network access but could be exploited by compromised internal devices.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploit details are publicly available but require specific conditions and knowledge to execute successfully.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Tenda for updated firmware version

Vendor Advisory: Not provided in references

Restart Required: Yes

Instructions:

1. Check Tenda support website for firmware updates 2. Download latest firmware 3. Upload via router admin interface 4. Reboot router after installation

🔧 Temporary Workarounds

Disable remote firmware updates

all

Prevent unauthorized firmware uploads by disabling remote update functionality

Network segmentation

all

Isolate router management interface from untrusted networks

🧯 If You Can't Patch

Disable WAN access to router management interface
Implement strict firewall rules to limit access to router update port

🔍 How to Verify

Check if Vulnerable:

Check router firmware version in admin interface matches 16.01.7.8(3660)

Check Version:

Login to router admin interface and check System Status or Firmware Information

Verify Fix Applied:

Verify firmware version has been updated to a newer release

📡 Detection & Monitoring

Log Indicators:

Unexpected firmware update attempts
Failed authentication to update endpoint
Firmware version changes

Network Indicators:

Unusual traffic to router update port (typically 80/443)
Firmware upload packets to router IP

SIEM Query:

source="router_logs" AND (event="firmware_update" OR event="authentication_failure")

📊 Metadata

CVE ID: CVE-2025-8980

CVSS v3 Score: 6.6 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-345

EPSS Score: 0.1% exploit probability (26.6th percentile)

Published: August 14, 2025

Last Updated: August 18, 2025

🔗 References

https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Tenda/G1_Auth.md Third Party Advisory
https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Tenda/G1_Inte.md Third Party Advisory
https://vuldb.com/?ctiid.319976 Permissions Required
https://vuldb.com/?id.319976 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.628605 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.628606 Third Party Advisory,VDB Entry
https://www.tenda.com.cn/ Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-8980, you might also want to check these: