CVE-2025-25901

Summary

CVE-2025-25901 is a buffer overflow vulnerability affecting TP-Link TL-WR841ND V11 devices. The issue is triggered by maliciously crafted packets sent to the dnsserver1 and dnsserver2 parameters at /userRpm/WanSlaacCfgRpm.htm. By exploiting this vulnerability, attackers can cause a Denial of Service (DoS) on the affected device. This issue poses a significant risk, as it allows unauthorized users to disrupt the normal functioning of the network equipment. It is recommended that users of the TP-Link TL-WR841ND V11 model update their devices as soon as a patch becomes available to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.