CVE-2025-7855
Published: 19 July 2025
Summary
CVE-2025-7855 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Tenda Fh451 Firmware. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 44.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
SI-10 requires validation of inputs like the 'page' argument to prevent stack-based buffer overflows from improper restriction of operations within memory bounds.
SI-16 enforces memory protections such as stack canaries, DEP, and ASLR that directly mitigate exploitation of stack-based buffer overflows.
SI-2 mandates timely remediation of flaws like this buffer overflow through firmware patching to eliminate the vulnerability.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Stack-based buffer overflow in Tenda FH451 router's web interface (/goform/qossetting) via remote 'page' parameter manipulation enables arbitrary code execution on a likely public-facing network device.
NVD Description
A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromqossetting of the file /goform/qossetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely.
Deeper analysisAI
CVE-2025-7855 is a critical stack-based buffer overflow vulnerability in Tenda FH451 firmware version 1.0.0.9. The flaw affects the fromqossetting function in the /goform/qossetting file, where manipulation of the "page" argument triggers the overflow. Published on 2025-07-19, it carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and maps to CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) and CWE-121 (Stack-based Buffer Overflow).
Remote attackers can exploit this vulnerability over the network with low attack complexity, requiring only low privileges such as those held by an authenticated user, and without needing user interaction. Successful exploitation enables high-impact consequences, including unauthorized disclosure of information, modification of data, and denial of service, with potential for arbitrary code execution due to the nature of the stack-based overflow.
References include a proof-of-concept exploit detailed on GitHub at https://github.com/panda666-888/vuls/blob/main/tenda/fh451/fromqossetting.md#poc, multiple VulDB entries (https://vuldb.com/?ctiid.316945, https://vuldb.com/?id.316945, https://vuldb.com/?submit.616367), and the vendor site at https://www.tenda.com.cn/. No specific mitigation or patch details are outlined in the provided references.
Details
- CWE(s)