CVE-2025-7796
Published: 18 July 2025
Summary
CVE-2025-7796 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Tenda Fh451 Firmware. Its CVSS base score is 7.4 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 18.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
A critical stack-based buffer overflow vulnerability exists in Tenda FH451 version 1.0.0.9 within the fromPptpUserAdd function of the /goform/PPTPDClient endpoint. The flaw is triggered by unsanitized input to the Username argument and is tracked under CWE-119 and CWE-121. It received a CVSS 4.0 score of 7.4 and can be reached over the network without user interaction.
An authenticated remote attacker can supply a crafted Username value to overwrite the stack and achieve arbitrary code execution or a denial of service on the affected router. Public proof-of-concept code demonstrating the issue has been released.
The EPSS score remains flat at 0.0157 with no material increase after disclosure. Available references consist of exploit details and vulnerability database entries but contain no vendor advisory or patch information.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-21908
Vulnerability details
A vulnerability, which was classified as critical, was found in Tenda FH451 1.0.0.9. This affects the function fromPptpUserAdd of the file /goform/PPTPDClient. The manipulation of the argument Username leads to stack-based buffer overflow. It is possible to initiate the attack…
more
remotely. The exploit has been disclosed to the public and may be used.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Stack-based buffer overflow in the Tenda FH451 router's web interface (/goform/PPTPDClient) via Username parameter enables remote exploitation of a public-facing application for likely remote code execution.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly prevents the stack-based buffer overflow by validating the bounds and format of the Username argument in the fromPptpUserAdd function.
Mitigates stack-based buffer overflows through memory protections like stack canaries, address space layout randomization, and non-executable memory.
Requires timely identification, reporting, and patching of flaws such as this critical buffer overflow in the Tenda FH451 firmware.