CVE-2025-25899

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Feb 13, 2025

CWE ID 404

Summary

CVE-2025-25899 is a buffer overflow vulnerability affecting TP-Link TL-WR841ND V11 devices. The issue is located in the processing of the 'gw' parameter in the URL /userRpm/WanDynamicIpV6CfgRpm.htm. This vulnerability can be exploited by attackers to trigger a Denial of Service (DoS) by sending a specially crafted packet. The buffer overflow occurs due to improper input validation, allowing attackers to inject excessive data and disrupt the normal functioning of the device. This vulnerability poses a significant risk to network availability and requires immediate attention from device owners and administrators to apply the necessary patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database