CVE-2025-12209

A vulnerability was determined in Tenda O3 1.0.0.102478. Affected is the function SetValue/GetValue of the file /goform/setDhcpConfig. Executing a manipulation of the argument dhcpEn can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been publicly...

EUVD-2025-36067

A vulnerability was determined in Tenda O3 1.0.0.102478. Affected is the function SetValue/GetValue of the file /goform/setDhcpConfig. Executing manipulation of the argument dhcpEn can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been publicly...

CVE-2025-12209

CVE-2025-12209 affects Tenda O3 firmware 1.0.0.10(2478). The vulnerability lies in the SetValue/GetValue handlers of /goform/setDhcpConfig, where manipulating the dhcpEn argument can trigger a stack-based buffer overflow. This may be exploitable remotely and, according to multiple sources, an exp...

PT-2025-43869

Name of the Vulnerable Software and Affected Versions Tenda O3 version 1.0.0.102478 Description A flaw exists in the SetValue/GetValue function within the /goform/setDhcpConfig file of the Tenda O3 router. Manipulation of the dhcpEn argument can trigger a stack-based buffer overflow, potentially...

Tenda O3 安全漏洞

Tenda O3 is an outdoor wireless bridge from Tenda, China. Tenda O3 1.0.0.10 version of the buffer overflow vulnerability exists, the vulnerability stems from the file /goform/setDhcpConfig function SetValue/GetValue parameter dhcpEn fails to correctly validate the length of the input data size, t...