CVE-2022-38562

Tenda M3 V1.0.0.124856 was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service DoS via the lan parameter...

Tenda O3 Buffer Overflow Vulnerability (CNVD-2025-26877)

Tenda O3 is an outdoor wireless bridge from Tenda, China. The Tenda O3 suffers from a buffer overflow vulnerability that stems from the parameter lan in the file /goform/setVlanConfig failing to properly validate the length of the input data, which can be exploited by an attacker to cause a stack...

CVE-2025-12213

A security vulnerability has been detected in Tenda O3 1.0.0.102478. This vulnerability affects the function SetValue/GetValue of the file /goform/setVlanConfig. Such manipulation of the argument lan leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been...

CVE-2022-38562

Tenda M3 V1.0.0.124856 was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service DoS via the lan parameter...

Heap overflow

Tenda M3 V1.0.0.124856 was discovered to contain a heap buffer overflow vulnerability in the function formSetFixTools. This vulnerability allows attackers to cause a Denial of Service DoS via the lan parameter...

PT-2022-24456 · Tenda · Tenda M3

Name of the Vulnerable Software and Affected Versions: Tenda M3 version 1.0.0.124856 Description: A heap buffer overflow issue was found in the formSetFixTools function, allowing attackers to cause a Denial of Service DoS by exploiting the lan parameter. Recommendations: For Tenda M3 version...

Tenda M3 缓冲区错误漏洞

Tenda M3 is an access controller from Tenda, China. A security vulnerability exists in Tenda M3 version V1.0.0.124856, which is caused by a heap buffer overflow vulnerability in the formSetFixTools function. The vulnerability allows an attacker to cause a denial of service DoS via the lan paramet...

Remote code execution

Tenda AC10 USAC10V1.0RTLV15.03.06.26multiTD01 was discovered to contain a remote code execution RCE vulnerability via the lanIp parameter...

CVE-2019-20082

ASUS RT-N53 3.0.0.4.376.3754 devices have a buffer overflow via a long landns1x or landns2x parameter to AdvancedLANContent.asp...

PT-2006-6587 · Exporia · Exporia

Name of the Vulnerable Software and Affected Versions: Exporia version 0.3.0 Description: A remote file inclusion issue in common.php allows remote attackers to execute arbitrary PHP code via a URL in the lan parameter. However, it's noted that further analysis by SecurityFocus disputes this issu...