VYPR

AX3

by Tenda

CVEs (53)

  • CVE-2022-24157HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetMacFilterCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the deviceList parameter.

  • CVE-2022-24156HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetVirtualSer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.

  • CVE-2022-24155HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a heap overflow in the function setSchedWifi. This vulnerability allows attackers to cause a Denial of Service (DoS) via the schedStartTime and schedEndTime parameters.

  • CVE-2022-24154HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetRebootTimer. This vulnerability allows attackers to cause a Denial of Service (DoS) via the rebootTime parameter.

  • CVE-2022-24153HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formAddMacfilterRule. This vulnerability allows attackers to cause a Denial of Service (DoS) via the devName parameter.

  • CVE-2022-24152HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetRouteStatic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.

  • CVE-2022-24151HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWifiGusetBasic. This vulnerability allows attackers to cause a Denial of Service (DoS) via the shareSpeed parameter.

  • CVE-2022-24149HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromSetWirelessRepeat. This vulnerability allows attackers to cause a Denial of Service (DoS) via the wpapsk_crypto parameter.

  • CVE-2022-24147HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function fromAdvSetMacMtuWan. This vulnerability allows attackers to cause a Denial of Service (DoS) via the wanMTU, wanSpeed, cloneType, mac, and serviceName parameters.

  • CVE-2022-24146HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetQosBand. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.

  • CVE-2022-24145HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formWifiBasicSet. This vulnerability allows attackers to cause a Denial of Service (DoS) via the security and security_5g parameters.

  • CVE-2022-24143HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN and AX12 22.03.01.2_CN was discovered to contain a stack overflow in the function form_fast_setting_wifi_set. This vulnerability allows attackers to cause a Denial of Service (DoS) via the timeZone parameter.

  • CVE-2022-24142HigFeb 4, 2022
    risk 0.49cvss 7.5epss 0.01

    Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetFirewallCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the firewallEn parameter.

  • CVE-2025-69765Mar 3, 2026
    risk 0.00cvss epss 0.01

    Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formGetIptv function and the list parameter, which can cause memory corruption and enable remote code execution.

  • CVE-2025-69764Jan 22, 2026
    risk 0.00cvss epss 0.01

    Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the stbpvid stack buffer, which may result in memory corruption and remote code execution.

  • CVE-2025-69766Jan 21, 2026
    risk 0.00cvss epss 0.01

    Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the citytag stack buffer, which may result in memory corruption and remote code execution.

  • CVE-2025-69762Jan 21, 2026
    risk 0.00cvss epss 0.01

    Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the list parameter, which can cause memory corruption and enable remote code execution.

  • CVE-2025-69763Jan 21, 2026
    risk 0.00cvss epss 0.01

    Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution.

  • CVE-2025-71025Jan 13, 2026
    risk 0.00cvss epss 0.00

    Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.

  • CVE-2025-71027Jan 13, 2026
    risk 0.00cvss epss 0.00

    Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.