[Vulnerability Alert] Stack-based Buffer Overflow Vulnerability in Some Modem Models Developed by Askey

Date Posted: 2025/07/30

Subject: [Vulnerability Alert] Stack-based Buffer Overflow Vulnerability in Some Modem Models Developed by Askey

Content:
- Forwarded from Taiwan Computer Network Emergency Response Team/Coordination Center TWCERTCC-200-202507-00000017
- [Askey | Modem - Stack-based Buffer Overflow] (CVE-2025-7921, CVSS: 9.8) A stack-based buffer overflow vulnerability exists in some modem models developed by Askey. Unauthenticated remote attackers can control program execution flow and potentially execute arbitrary code.
Affected Platforms:
- Device Models: RTF8207w and RTF8217
- Firmware Versions: R82XXR250718 (exclusive) and earlier
Recommended Action:
- Update firmware version to R82XXR250718 (inclusive) and later.
References:
- https://www.twcert.org.tw/tw/cp-132-10268-1583b-1.html

Computer and Communications Center
Network Systems Group