CVE-2025-25897

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 13, 2025

Updated: Feb 18, 2025

CWE ID 787

Summary

CVE-2025-25897 is a buffer overflow vulnerability affecting the TP-Link TL-WR841ND V11 model. The issue is located in the handling of the 'ip' parameter at /userRpm/WanStaticIpV6CfgRpm.htm. An attacker can exploit this vulnerability by sending a specially crafted packet, resulting in a Denial of Service (DoS) condition. The buffer overflow can potentially allow code injection if not properly mitigated, posing a more serious risk. Users are strongly advised to apply the necessary patch or update their devices to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3IIPmM
https://www.cve.org/CVERecord?id=CVE-2025-25897
https://nvd.nist.gov/vuln/detail/CVE-2025-25897

Back to Vulnerability Database

CVE-2025-25897

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations