What is the CVSS score of CVE-2025-5795?

CVE-2025-5795 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.5%.

Which versions of Ac5 Firmware are affected by CVE-2025-5795?

A critical remote code execution vulnerability affecting Tenda AC5 routers (firmware 1.0/15.03.06.47) has been publicly disclosed with working exploits available.

Is there a public PoC exploit available for CVE-2025-5795?

Yes, a public proof-of-concept exploit is available for CVE-2025-5795. Prioritise patching immediately. EPSS: 0.5%.

How to fix or mitigate CVE-2025-5795?

Within 24 hours: Inventory all Tenda AC5 1.0/15.03.06.47 devices across the organization and isolate critical instances from sensitive networks. Within 7 days: Contact Tenda for patch status; if unavailable, implement network segmentation to restrict direct access to affected devices and disable remote management features. Within 30 days: Execute device replacement/upgrade program with alternative vendors or await vendor patch; document all mitigations and establish monitoring for exploitation attempts.

Ac5 Firmware CVE-2025-5795

EUVD-2025-17361 HIGH

Buffer Overflow (CWE-119)

2025-06-06 cna@vuldb.com

Buffer Overflow Tenda Ac5 Firmware

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 18:10 euvd

EUVD-2025-17361

Analysis Generated

Mar 14, 2026 - 18:10 vuln.today

PoC Detected

Jun 09, 2025 - 19:08 vuln.today

Public exploit code

CVE Published

Jun 06, 2025 - 19:15 nvd

HIGH 8.8

DescriptionNVD

A vulnerability, which was classified as critical, was found in Tenda AC5 1.0/15.03.06.47. This affects the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

Critical buffer overflow vulnerability in Tenda AC5 router firmware (version 1.0/15.03.06.47) affecting the LAN IP configuration function. An authenticated attacker can remotely exploit improper input validation on the 'lanMask' parameter to achieve remote code execution with high confidentiality, integrity, and availability impact. Public exploit code is available and the vulnerability meets active exploitation criteria.

Technical ContextAI

The vulnerability exists in the fromadvsetlanip function within the /goform/AdvSetLanip HTTP endpoint of Tenda AC5 wireless router firmware. This represents a classic CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) stack-based buffer overflow. The lanMask parameter, intended to receive a netmask value (typically dotted-decimal notation like 255.255.255.0), lacks proper bounds checking before being copied into a fixed-size stack buffer. The Tenda AC5 is a low-cost 802.11ac dual-band router commonly deployed in home and small business networks. The /goform endpoint is part of Tenda's web management interface, which processes configuration changes. CPE: cpe:2.3:o:tenda:ac5_firmware:15.03.06.47:*:*:*:*:*:*:*

RemediationAI

IMMEDIATE ACTIONS: (1) Restrict network access to the router's web management interface (port 80/443) using firewall rules or IP whitelisting—limit access to trusted administrative networks only. (2) Change default router credentials if present; enforce strong authentication. (3) Disable remote management features if not required. (4) Monitor Tenda's official security advisory page (https://www.tenda.com.cn/en/service/) for patched firmware release (version > 15.03.06.47). LONG-TERM: Upgrade to patched firmware once released by Tenda. If Tenda does not release a patch, consider replacing the device with firmware from vendors with active security maintenance. Implement network segmentation to isolate IoT/router management traffic.

CVE-2025-5795 vulnerability details – vuln.today

Back

Ac5 Firmware CVE-2025-5795

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code