CVE-2025-8980

Name of the Vulnerable Software and Affected Versions: Tenda G1 version 16.01.7.8(3660)

Description: A vulnerability exists in the Tenda G1 device due to insufficient verification of data authenticity within the Firmware Update Handler component. The check upload file function is affected, allowing for potential remote code execution. Exploitation is considered difficult, but the exploit has been publicly disclosed.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.