CVE-2026-3973

CVE-2026-3973 affects Tenda W3 1.0.0.3(2204). The vulnerability is in the POST /goform/setAutoPing handler (formSetAutoPing) where manipulating ping1/ping2 triggers a stack-based buffer overflow. The issue is exploitable remotely with a publicly disclosed exploit. CVSS-based metrics indicate HIGH...

EUVD-2026-11505

A vulnerability was determined in Tenda W3 1.0.0.32204. This affects the function formSetAutoPing of the file /goform/setAutoPing of the component POST Parameter Handler. This manipulation of the argument ping1/ping2 causes stack-based buffer overflow. The attack is possible to be carried out...

CVE-2026-3973

A vulnerability was determined in Tenda W3 1.0.0.32204. This affects the function formSetAutoPing of the file /goform/setAutoPing of the component POST Parameter Handler. This manipulation of the argument ping1/ping2 causes stack-based buffer overflow. The attack is possible to be carried out...

Tenda W3 安全漏洞

The Tenda W3 is a wireless access point device produced by the Chinese company Tenda. Version 1.0.0.32204 of the Tenda W3 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters ping1/ping2 in the file/goform/setAutoPing, which may lead to a stack buffer...

EUVD-2026-10292

A vulnerability was found in Tenda i3 1.0.0.62204. Affected by this vulnerability is the function formSetAutoPing of the file /goform/setAutoPing. Performing a manipulation of the argument ping1/ping2 results in stack-based buffer overflow. The attack is possible to be carried out remotely. The...

CVE-2026-3801

CVE-2026-3801 affects the Tenda i3 router firmware version 1.0.0.6(2204). The vulnerability is in the function formSetAutoPing of the file /goform/setAutoPing, where manipulation of the arguments ping1/ping2 triggers a stack-based buffer overflow. This can be exploited remotely, and the exploit h...

CVE-2026-3801 Tenda i3 setAutoPing formSetAutoPing stack-based overflow

A vulnerability was found in Tenda i3 1.0.0.62204. Affected by this vulnerability is the function formSetAutoPing of the file /goform/setAutoPing. Performing a manipulation of the argument ping1/ping2 results in stack-based buffer overflow. The attack is possible to be carried out remotely. The...

CVE-2026-3801 Tenda i3 setAutoPing formSetAutoPing stack-based overflow

A vulnerability was found in Tenda i3 1.0.0.62204. Affected by this vulnerability is the function formSetAutoPing of the file /goform/setAutoPing. Performing a manipulation of the argument ping1/ping2 results in stack-based buffer overflow. The attack is possible to be carried out remotely. The...

PT-2026-24010

Name of the Vulnerable Software and Affected Versions Tenda i3 version 1.0.0.62204 Description A stack-based buffer overflow exists in the formSetAutoPing function of the file /goform/setAutoPing in Tenda i3 version 1.0.0.62204. Manipulation of the ping1 or ping2 argument can trigger the overflow...

EUVD-2022-48369

Malicious code in bioql PyPI...

CVE-2024-0990

A vulnerability, which was classified as critical, was found in Tenda i6 1.0.0.93857. This affects the function formSetAutoPing of the file /goform/setAutoPing of the component httpd. The manipulation of the argument ping1 leads to stack-based buffer overflow. It is possible to initiate the attac...

CVE-2024-0990 Tenda i6 httpd setAutoPing formSetAutoPing stack-based overflow

A vulnerability, which was classified as critical, was found in Tenda i6 1.0.0.93857. This affects the function formSetAutoPing of the file /goform/setAutoPing of the component httpd. The manipulation of the argument ping1 leads to stack-based buffer overflow. It is possible to initiate the attac...

Tenda i6 安全漏洞

Tenda i6 is a wireless access point from Tenda China. A buffer overflow vulnerability exists in Tenda i6 version 1.0.0.9, which originates from the ping1 parameter of the formSetAutoPing function in /goform/setAutoPing that fails to correctly validate the length of the input data, and can be...

PT-2024-1312 · Tenda · Tenda I6

Name of the Vulnerable Software and Affected Versions: Tenda i6 version 1.0.0.93857 Description: A critical issue was found in the formSetAutoPing function of the httpd component, specifically in the file /goform/setAutoPing. The manipulation of the ping1 argument leads to a stack-based buffer...

CVE-2022-45503

Tenda W6-S v1.0.0.4510 was discovered to contain a stack overflow via the linkEn parameter at /goform/setAutoPing...

CVE-2022-35559

A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.94122, which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution...

Tenda W6 缓冲区错误漏洞

Tenda W6 is a wireless WiFi AP access point router from Tenda, China. Tenda W6 is vulnerable to a stack overflow vulnerability caused by improper boundary checking in the function setAutoPing. A remote attacker could exploit this vulnerability to overflow the buffer and execute arbitrary code on...

PT-2022-22903 · Tenda · Tenda W6

Name of the Vulnerable Software and Affected Versions: Tenda W6 version 1.0.0.94122 Description: A stack overflow issue exists in the /goform/setAutoPing API endpoint, allowing an attacker to construct ping1 and ping2 parameters for a stack overflow attack, potentially leading to arbitrary code...