Tenda Ax3_firmware
53 CVEs affecting Tenda Ax3_firmware. Latest disclosed: 2026-03-03. Critical: 16, High: 36.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-69764 | Critical | 9.8 | 2026-01-22 | Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the stbpvid stack buffer, which… |
CVE-2025-69766 | Critical | 9.8 | 2026-01-21 | Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the citytag stack buffer, which… |
CVE-2025-69763 | Critical | 9.8 | 2026-01-21 | Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code exe… |
CVE-2025-69762 | Critical | 9.8 | 2026-01-21 | Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the list parameter, which can cause memory corruption and enable remote code execu… |
CVE-2023-51812 | Critical | 9.8 | 2024-01-04 | Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList. |
CVE-2023-49409 | Critical | 9.8 | 2023-12-07 | Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet. |
CVE-2023-49408 | Critical | 9.8 | 2023-12-07 | Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name. |
CVE-2023-27240 | Critical | 9.8 | 2023-03-15 | Tenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip. |
CVE-2023-27239 | Critical | 9.8 | 2023-03-15 | Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the shareSpeed parameter at /goform/WifiGuestSet. |
CVE-2023-24212 | Critical | 9.8 | 2023-02-23 | Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the timeType function at /goform/SetSysTimeCfg. |
CVE-2022-24995 | Critical | 9.8 | 2022-03-10 | Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of S… |
CVE-2021-46394 | Critical | 9.8 | 2022-03-04 | There is a stack buffer overflow vulnerability in the formSetPPTPServer function of Tenda-AX3 router V16.03.12.10_CN. The v13 variable is directly retrieved fr… |
CVE-2021-46393 | Critical | 9.8 | 2022-03-04 | There is a stack buffer overflow vulnerability in the formSetPPTPServer function of Tenda-AX3 router V16.03.12.10_CN. The v10 variable is directly retrieved fr… |
CVE-2022-24150 | Critical | 9.8 | 2022-02-04 | Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function formSetSafeWanWebMan. This vulnerability allows attackers… |
CVE-2022-24148 | Critical | 9.8 | 2022-02-04 | Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execut… |
CVE-2022-24144 | Critical | 9.8 | 2022-02-04 | Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function WanParameterSetting. This vulnerability allows attackers… |
CVE-2023-47422 | High | 8.8 | 2024-02-20 | An access control issue in /usr/sbin/httpd in Tenda TX9 V1 V22.03.02.54, Tenda AX3 V3 V16.03.12.11, Tenda AX9 V1 V22.03.01.46, and Tenda AX12 V1 V22.03.01.46 a… |
CVE-2023-27042 | High | 8.8 | 2023-03-24 | Tenda AX3 V16.03.12.11 is vulnerable to Buffer Overflow via /goform/SetFirewallCfg. |
CVE-2025-69765 | High | 7.5 | 2026-03-03 | Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formGetIptv function and the list parameter, which can cause memory corruption and enable remote c… |
CVE-2025-71027 | High | 7.5 | 2026-01-13 | Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows a… |