Ax3 Firmware

ax3_firmware

Vendor: Tenda • 53 CVEs

CVEs (53)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-69765 1Tenda 1Ax3 Firmware Mar 4, 2026 Mar 3, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formGetIptv function and the list parameter, which can cause memory corruption and enable remote code execution.
CVE-2025-69764 1Tenda 1Ax3 Firmware Jan 26, 2026 Jan 22, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the stbpvid stack buffer, which may result in memory corruption and remote code execution.
CVE-2025-69766 1Tenda 1Ax3 Firmware Jan 26, 2026 Jan 21, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the citytag stack buffer, which may result in memory corruption and remote code execution.
CVE-2025-69763 1Tenda 1Ax3 Firmware Jan 26, 2026 Jan 21, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution.
CVE-2025-69762 1Tenda 1Ax3 Firmware Jan 26, 2026 Jan 21, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the list parameter, which can cause memory corruption and enable remote code execution.
CVE-2025-71027 1Tenda 1Ax3 Firmware Jan 16, 2026 Jan 13, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted req...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-71026 1Tenda 1Ax3 Firmware Jan 16, 2026 Jan 13, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanSpeed2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted r...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanSpeed2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-71025 1Tenda 1Ax3 Firmware Jan 16, 2026 Jan 13, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-71024 1Tenda 1Ax3 Firmware Jan 16, 2026 Jan 13, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the serviceName2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the serviceName2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-71023 1Tenda 1Ax3 Firmware Jan 20, 2026 Jan 13, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the mac2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted reques...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the mac2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-65804 1Tenda 1Ax3 Firmware Dec 11, 2025 Dec 8, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Tenda AX3 v16.03.12.11 contains a stack overflow in formSetIptv via the iptvType parameter, which can cause memory corruption and enable remote code execution (RCE).
CVE-2025-63149 1Tenda 1Ax3 Firmware Nov 17, 2025 Nov 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the urls parameter of the get_parentControl_list_Info function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted...Show more Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the urls parameter of the get_parentControl_list_Info function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-63455 1Tenda 1Ax3 Firmware Nov 17, 2025 Nov 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a craft...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-63147 1Tenda 1Ax3 Firmware Nov 18, 2025 Nov 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted r...Show more Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-63152 1Tenda 1Ax3 Firmware Nov 17, 2025 Nov 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the wpapsk_crypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a craft...Show more Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the wpapsk_crypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-63454 1Tenda 1Ax3 Firmware Nov 5, 2025 Oct 31, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the deviceId parameter in the get_parentControl_list_Info function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a c...Show more Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the deviceId parameter in the get_parentControl_list_Info function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2025-55606 1Tenda 1Ax3 Firmware Sep 26, 2025 Aug 22, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the fromAdvSetMacMtuWan function via the serverName parameter.
CVE-2025-55605 1Tenda 1Ax3 Firmware Sep 26, 2025 Aug 22, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the saveParentControlInfo function via the deviceName parameter.
CVE-2025-55603 1Tenda 1Ax3 Firmware Sep 26, 2025 Aug 22, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the fromSetSysTime function via the ntpServer parameter.
CVE-2023-47422 1Tenda 4Ax12 Firmware Ax3 FirmwareAx9 Firmware+1 more Apr 25, 2025 Feb 20, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 An access control issue in /usr/sbin/httpd in Tenda TX9 V1 V22.03.02.54, Tenda AX3 V3 V16.03.12.11, Tenda AX9 V1 V22.03.01.46, and Tenda AX12 V1 V22.03.01.46 allows attackers to bypass authentication on any endpoint via...Show more An access control issue in /usr/sbin/httpd in Tenda TX9 V1 V22.03.02.54, Tenda AX3 V3 V16.03.12.11, Tenda AX9 V1 V22.03.01.46, and Tenda AX12 V1 V22.03.01.46 allows attackers to bypass authentication on any endpoint via a crafted URL.Show less

12 3 Next