M3
by Tenda
CVEs (46)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-15232 | 0.00 | — | 0.01 | Dec 30, 2025 | A vulnerability was identified in Tenda M3 1.0.0.13(4903). This vulnerability affects the function formSetAdPushInfo of the file /goform/setAdPushInfo. The manipulation of the argument mac/terminal leads to stack-based buffer overflow. The attack is possible to be carried out… | |||
| CVE-2025-15231 | 0.00 | — | 0.01 | Dec 30, 2025 | A vulnerability was determined in Tenda M3 1.0.0.13(4903). This affects the function formSetRemoteVlanInfo of the file /goform/setVlanInfo. Executing a manipulation of the argument ID/vlan/port can lead to stack-based buffer overflow. The attack can be executed remotely. The… | |||
| CVE-2025-15230 | 0.00 | — | 0.01 | Dec 30, 2025 | A vulnerability was found in Tenda M3 1.0.0.13(4903). Affected by this issue is the function formSetVlanPolicy of the file /goform/setVlanPolicyData. Performing a manipulation of the argument qvlan_truck_port results in heap-based buffer overflow. Remote exploitation of the… | |||
| CVE-2025-9299 | 0.00 | — | 0.04 | Aug 21, 2025 | A vulnerability has been found in Tenda M3 1.0.0.12. Affected by this vulnerability is the function formGetMasterPassengerAnalyseData of the file /goform/getMasterPassengerAnalyseData. The manipulation of the argument Time leads to stack-based buffer overflow. The attack may be… | |||
| CVE-2025-9298 | 0.00 | — | 0.01 | Aug 21, 2025 | A flaw has been found in Tenda M3 1.0.0.12. Affected is the function formQuickIndex of the file /goform/QuickIndex. Executing manipulation of the argument PPPOEPassword can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published… | |||
| CVE-1999-1264 | 0.00 | — | 0.01 | Jan 21, 1999 | WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been explicitly disabled. |
- CVE-2025-15232Dec 30, 2025risk 0.00cvss —epss 0.01
A vulnerability was identified in Tenda M3 1.0.0.13(4903). This vulnerability affects the function formSetAdPushInfo of the file /goform/setAdPushInfo. The manipulation of the argument mac/terminal leads to stack-based buffer overflow. The attack is possible to be carried out…
- CVE-2025-15231Dec 30, 2025risk 0.00cvss —epss 0.01
A vulnerability was determined in Tenda M3 1.0.0.13(4903). This affects the function formSetRemoteVlanInfo of the file /goform/setVlanInfo. Executing a manipulation of the argument ID/vlan/port can lead to stack-based buffer overflow. The attack can be executed remotely. The…
- CVE-2025-15230Dec 30, 2025risk 0.00cvss —epss 0.01
A vulnerability was found in Tenda M3 1.0.0.13(4903). Affected by this issue is the function formSetVlanPolicy of the file /goform/setVlanPolicyData. Performing a manipulation of the argument qvlan_truck_port results in heap-based buffer overflow. Remote exploitation of the…
- CVE-2025-9299Aug 21, 2025risk 0.00cvss —epss 0.04
A vulnerability has been found in Tenda M3 1.0.0.12. Affected by this vulnerability is the function formGetMasterPassengerAnalyseData of the file /goform/getMasterPassengerAnalyseData. The manipulation of the argument Time leads to stack-based buffer overflow. The attack may be…
- CVE-2025-9298Aug 21, 2025risk 0.00cvss —epss 0.01
A flaw has been found in Tenda M3 1.0.0.12. Affected is the function formQuickIndex of the file /goform/QuickIndex. Executing manipulation of the argument PPPOEPassword can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published…
- CVE-1999-1264Jan 21, 1999risk 0.00cvss —epss 0.01
WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been explicitly disabled.
Page 3 of 3