CVE Catalog

CVE-2025-22916

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.61%

45th percentile - higher than 45% of all known CVEs

Summary

A stack overflow vulnerability was discovered in RE11S v1.11 via the pppUserName parameter in the formPPPoESetup function.

Risk Assessment

An attacker can remotely crash the device or potentially gain control, leading to network security compromise.

Recommendation

Immediately update the RE11S firmware to the latest version if available, or apply workarounds recommended by the vendor.

Original NVD description (English source)

RE11S v1.11 was discovered to contain a stack overflow via the pppUserName parameter in the formPPPoESetup function.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS