CVE-2025-25664

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 20, 2025

Updated: Feb 21, 2025

CWE ID 120

Summary

CVE-2025-25664 is a newly identified vulnerability affecting the Tenda AC8V4 V16.03.34.06 firmware. This issue involves a stack overflow, which can be triggered by an improper input in the shareSpeed parameter within the sub_49E098 function. Successful exploitation may lead to unintended execution of code or denial of service conditions. Network administrators are urged to update their devices to the latest firmware version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3IDs4d
https://www.cve.org/CVERecord?id=CVE-2025-25664
https://nvd.nist.gov/vuln/detail/CVE-2025-25664

Back to Vulnerability Database

CVE-2025-25664

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations