What is the CVSS score of CVE-2025-5799?

CVE-2025-5799 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.5%.

Which versions of Ac8 Firmware are affected by CVE-2025-5799?

A critical remote code execution vulnerability affecting Tenda AC8 routers (model 16.03.34.09) allows unauthenticated attackers to compromise network infrastructure through a stack-based buffer…

Is there a public PoC exploit available for CVE-2025-5799?

Yes, a public proof-of-concept exploit is available for CVE-2025-5799. Prioritise patching immediately. EPSS: 0.5%.

How to fix or mitigate CVE-2025-5799?

Within 24 hours: Identify and inventory all Tenda AC8 16.03.34.09 devices in your network; isolate affected devices from critical systems if possible. Within 7 days: Implement network segmentation to restrict device access; deploy WAF rules blocking requests to /goform/WifiExtraSet; disable wireless repeat/extender functionality if not essential. Within 30 days: Replace vulnerable devices with patched alternatives or different vendors; evaluate all Tenda devices for similar vulnerabilities; conduct network forensics for breach indicators.

Ac8 Firmware CVE-2025-5799

EUVD-2025-17364 HIGH

Buffer Overflow (CWE-119)

2025-06-06 cna@vuldb.com

Buffer Overflow Tenda Ac8 Firmware

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 18:10 euvd

EUVD-2025-17364

Analysis Generated

Mar 14, 2026 - 18:10 vuln.today

PoC Detected

Jun 09, 2025 - 19:07 vuln.today

Public exploit code

CVE Published

Jun 06, 2025 - 20:15 nvd

HIGH 8.8

DescriptionNVD

A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. Affected by this vulnerability is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

Critical stack-based buffer overflow vulnerability in Tenda AC8 router firmware version 16.03.34.09, affecting the wireless repeat configuration function. An authenticated remote attacker can exploit this vulnerability via the wpapsk_crypto parameter to achieve arbitrary code execution with full system compromise (confidentiality, integrity, and availability impact). Public proof-of-concept code exists and exploitation is feasible, making this an actively exploitable threat requiring immediate patching.

Technical ContextAI

The vulnerability exists in the fromSetWirelessRepeat function within the /goform/WifiExtraSet endpoint of Tenda AC8 router firmware. The root cause is classified as CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), specifically a stack-based buffer overflow. The wpapsk_crypto parameter lacks proper input validation and length checking, allowing an attacker to write beyond allocated stack memory boundaries. This affects embedded Linux-based router firmware where such web-accessible endpoints directly manipulate low-level wireless configuration structures without sanitization. The attack vector leverages the router's web management interface, a common attack surface in IoT/networking devices.

RemediationAI

Immediate actions: (1) Contact Tenda for firmware patch availability for AC8 devices running 16.03.34.09 or earlier; (2) If patch is available, upgrade firmware through the router's web interface or via Tenda's firmware distribution portal; (3) Until patching is possible, implement network-level mitigations such as restricting access to the router's web management interface (port 80/443) to trusted networks only, disabling remote management features, and isolating guest network users from administrative access; (4) Monitor router logs for suspicious /goform/WifiExtraSet requests with unusual wpapsk_crypto parameter values (long strings, binary data); (5) Consider replacing the device if Tenda does not release a patch within a reasonable timeframe (30-60 days). Specific patch versions should be verified against official Tenda security advisories once released.

CVE-2025-5799 vulnerability details – vuln.today

Back

Ac8 Firmware CVE-2025-5799

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code