CVE-2025-51087

moderate-risk

Published 2025-07-24

Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform/saveParentControlInfo. The manipulation of the argument time leads to stack-based buffer overflow.

Do I need to act?

0.37% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.6/10 High

NETWORK / LOW complexity

Affected Products (1)

Ac8 Firmware

Affected Vendors

Tenda

References (2)

Not Applicable http://tenda.com

Exploit https://github.com/TL-SN/IOT/blob/main/Tenda/Tenda-AC8v4%20%20V16.03.34.06/CVE-2...

/ 100

moderate-risk

Severity 29/34 · Critical

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal