CVE Catalog

CVE-2025-57571

MediumCVSS 5.6
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.19%

9th percentile - higher than 9% of all known CVEs

Summary

A buffer overflow vulnerability exists in Tenda F3 router version V12.01.01.48_multi and later. The issue is triggered via the macFilterList parameter in the goform/setNAT request.

Risk Assessment

An attacker can remotely crash the device or potentially gain control, leading to network security compromise.

Recommendation

Immediately update the Tenda F3 firmware to the latest patched version if available. Otherwise, restrict administrative interface access to trusted networks only.

Original NVD description (English source)

Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow. via the macFilterList parameter in goform/setNAT.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS