CVE-2025-7805
Published: 18 July 2025
Summary
CVE-2025-7805 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Tenda Fh451 Firmware. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 31.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly mitigates the CVE by requiring timely remediation of the stack-based buffer overflow flaw through firmware patching.
Prevents remote exploitation by enforcing validation of the 'delno' argument at the /goform/PPTPUserSetting input point to avoid buffer overflows.
Protects against successful arbitrary code execution from the stack-based buffer overflow using memory safeguards like stack canaries and non-executable stacks.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The unauthenticated stack-based buffer overflow in the public-facing web management interface (/goform/PPTPUserSetting) of the Tenda FH451 router enables remote code execution, facilitating exploitation of public-facing applications for initial access.
NVD Description
A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromPptpUserSetting of the file /goform/PPTPUserSetting. The manipulation of the argument delno leads to stack-based buffer overflow. It is possible to initiate the attack remotely.…
more
The exploit has been disclosed to the public and may be used.
Deeper analysisAI
CVE-2025-7805 is a critical stack-based buffer overflow vulnerability affecting Tenda FH451 routers running firmware version 1.0.0.9. The flaw exists in the fromPptpUserSetting function within the /goform/PPTPUserSetting file, where manipulation of the delno argument triggers the overflow. Published on 2025-07-18, it is associated with CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) and CWE-121 (Stack-based Buffer Overflow), earning a CVSS v3.1 base score of 8.8.
The vulnerability enables remote exploitation over the network with low attack complexity and requires low privileges (PR:L) but no user interaction. Attackers can achieve high impacts on confidentiality, integrity, and availability (C:H/I:H/A:H), potentially allowing arbitrary code execution and full device compromise.
Proof-of-concept exploits have been publicly disclosed, including details and a specific PoC at https://github.com/panda666-888/vuls/blob/main/tenda/fh451/fromPptpUserSetting.md and https://github.com/panda666-888/vuls/blob/main/tenda/fh451/fromPptpUserSetting.md#poc. Further advisory information is available on VulDB at https://vuldb.com/?ctiid.316881, https://vuldb.com/?id.316881, and https://vuldb.com/?submit.616347.
Details
- CWE(s)