Cyber Resilience

CVE-2025-1897

HighPublic PoC

Published: 04 March 2025

Published
04 March 2025
Modified
05 March 2025
KEV Added
Patch
CVSS Score v4 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0008 22.8th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-1897 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Tenda Tx3 Firmware. Its CVSS base score is 7.1 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 22.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-1897 is a critical buffer overflow vulnerability affecting Tenda TX3 firmware version 16.03.13.11_multi. The flaw occurs in the processing of the /goform/SetNetControlList file, where manipulation of the argument list triggers the overflow. It is associated with CWE-119 and CWE-120, and carries a CVSS v3.1 base score of 6.5 (AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

The vulnerability enables remote exploitation by attackers possessing low privileges. Successful manipulation can lead to a denial of service due to the high availability impact, with low attack complexity and no requirement for user interaction.

Advisories are available via VulDB entries (ctiid.298415, id.298415, submit.506604) and a GitHub repository containing a PDF exploit for Tenda TX3 (https://github.com/2664521593/mycve/blob/main/Tenda/TX3/tenda_tx3_bof_3.pdf). The Tenda vendor website (https://www.tenda.com.cn/) is also referenced. The exploit has been publicly disclosed and may be used.

EU & UK References

Vulnerability details

A vulnerability, which was classified as critical, has been found in Tenda TX3 16.03.13.11_multi. This issue affects some unknown processing of the file /goform/SetNetControlList. The manipulation of the argument list leads to buffer overflow. The attack may be initiated remotely.…

more

The exploit has been disclosed to the public and may be used.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

The buffer overflow vulnerability in /goform/SetNetControlList enables remote attackers to perform an endpoint denial of service by exploiting the application with a crafted 'list' parameter, causing a crash.

CVEs Like This One

CVE-2025-1898Same product: Tenda Tx3
CVE-2025-1899Same product: Tenda Tx3
CVE-2025-1895Same product: Tenda Tx3
CVE-2025-1896Same product: Tenda Tx3
CVE-2025-8958Same product: Tenda Tx3
CVE-2026-2137Same product: Tenda Tx3
CVE-2025-12234Same vendor: Tenda
CVE-2025-12273Same vendor: Tenda
CVE-2025-10803Same vendor: Tenda
CVE-2025-13288Same vendor: Tenda

Affected Assets

tenda
tx3 firmware
16.03.13.11

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the buffer overflow vulnerability in Tenda TX3 firmware by requiring timely identification, reporting, and correction through vendor patches.

prevent

Prevents buffer overflow exploitation by validating and restricting the length and format of argument lists processed by the /goform/SetNetControlList endpoint.

prevent

Mitigates buffer overflow impacts on availability through runtime memory protections such as stack canaries and non-executable memory regions.

References