What is the CVSS score of EUVD-2025-21101?

EUVD-2025-21101 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.4%.

Which versions of Fh451 Firmware are affected by EUVD-2025-21101?

A critical remote code execution vulnerability affects Tenda FH451 routers (firmware up to 1.0.0.9), allowing unauthenticated attackers to execute arbitrary commands without a patch.

Is there a public PoC exploit available for EUVD-2025-21101?

Yes, a public proof-of-concept exploit is available for EUVD-2025-21101. Prioritise patching immediately. EPSS: 0.4%.

How to fix or mitigate EUVD-2025-21101?

Within 24 hours: Inventory all Tenda FH451 devices and isolate affected units from production networks if possible; enable logging on perimeter devices. Within 7 days: Implement WAF rules blocking POST requests to /goform/addressNat with suspicious 'page' parameters; restrict administrative access to these devices via network segmentation. Within 30 days: Replace Tenda FH451 devices with alternative vendor equipment or await firmware patch from Tenda; conduct forensic analysis of affected devices for signs of compromise.

Fh451 Firmware EUVD-2025-21101

| CVE-2025-7434 HIGH

Buffer Overflow (CWE-119)

2025-07-11 cna@vuldb.com

Buffer Overflow Fh451 Firmware Tenda

8.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.8 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 16, 2026 - 08:17 euvd

EUVD-2025-21101

Analysis Generated

Mar 16, 2026 - 08:17 vuln.today

PoC Detected

Jul 16, 2025 - 16:43 vuln.today

Public exploit code

CVE Published

Jul 11, 2025 - 02:15 nvd

HIGH 8.8

DescriptionCVE.org

A vulnerability was found in Tenda FH451 up to 1.0.0.9 and classified as critical. Affected by this issue is the function fromAddressNat of the file /goform/addressNat of the component POST Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

CVE-2025-7434 is a critical stack-based buffer overflow vulnerability in Tenda FH451 wireless routers (versions up to 1.0.0.9) affecting the POST request handler for the /goform/addressNat endpoint. An authenticated remote attacker can exploit improper input validation on the 'page' parameter to overflow the stack, achieving arbitrary code execution with full system compromise (confidentiality, integrity, and availability impact). Public exploit code exists and the vulnerability may be actively exploited in the wild.

Technical ContextAI

This vulnerability exists in the Tenda FH451 router's web management interface, specifically in the fromAddressNat function responsible for handling NAT (Network Address Translation) address configuration. The affected component is a POST request handler that processes user-supplied input parameters without adequate bounds checking. CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) represents a classic buffer overflow condition where input data exceeds allocated stack memory, overwriting adjacent memory regions including function return addresses and local variables. The vulnerability is triggered when the 'page' parameter in a POST request to /goform/addressNat exceeds expected buffer limits, allowing stack memory corruption. This affects embedded Linux-based router firmware, where the web interface typically runs with elevated privileges.

RemediationAI

Immediate actions: (1) Upgrade Tenda FH451 firmware to version 1.0.1.0 or later (check Tenda support portal for availability and release notes). (2) Until patched, implement network-level mitigations: restrict access to router web management interface (port 80/443) using firewall rules, disable remote management features if enabled, and segment router administration to trusted networks only. (3) Reset router to factory defaults and immediately change default administrative credentials to strong, unique passwords. (4) Monitor router logs for suspicious POST requests to /goform/addressNat endpoint. (5) Contact Tenda support (support@tenda.com.cn) for patch availability timelines if version 1.0.1.0 is unavailable. (6) Consider replacement with devices from vendors demonstrating timely security updates if Tenda patches are delayed beyond 30 days.

EUVD-2025-21101 vulnerability details – vuln.today

Back

Fh451 Firmware EUVD-2025-21101

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code