CVE-2025-69763

Tenda AX3 firmware v16.03.12.11 contains a stack overflow in formSetIptv via the vlanId parameter, which can cause memory corruption and enable remote code execution...

CVE-2025-70648

Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security5g parameter of the sub727F4 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70648

Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security5g parameter of the sub727F4 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70644

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70646

Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security parameter of the sub72290 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70644

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70646

Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security parameter of the sub72290 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70645

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70650

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70650

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70645

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-70651

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the formfastsettingwifiset function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

EUVD-2026-3588

ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript...

ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript

Summary Stack overflow via infinite recursion in MSL Magick Scripting Language command when writing to MSL format. Version - ImageMagick 7.x tested on current main branch - Commit: HEAD - Requires: libxml2 support for MSL parsing Steps to Reproduce Method 1: Using ImageMagick directly bash magick...

GHSA-9VJ4-WC7R-P844 ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript

Summary Stack overflow via infinite recursion in MSL Magick Scripting Language command when writing to MSL format. Version - ImageMagick 7.x tested on current main branch - Commit: HEAD - Requires: libxml2 support for MSL parsing Steps to Reproduce Method 1: Using ImageMagick directly bash magick...

SUSE CVE-2026-23874

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL Magick Scripting Language command when writing to MSL format. Version 7.1.2-13 fixes the issue...

Tenda Ax3 security vulnerabilities

The Tenda Ax3 is a Wi-Fi 6 dual-band router with a gigabit port from the Chinese company Tenda. The Tenda Ax3 v16.03.12.11 version contains a security vulnerability. This vulnerability stems from a stack overflow in the list parameter of the formSetIptv function, which may lead to memory corrupti...

CVE-2025-70648

CVE-2025-70648 affects Tenda AX1803 v1.0.0.1. The vulnerability is a stack overflow in the security_5g parameter of the sub_727F4 function, enabling a crafted request to cause a Denial of Service. Reported CVSS v3.1 base score 7.5 (HIGH) with network access and no user interaction. Remediation vi...

CVE-2025-70645

CVE-2025-70645 concerns Tenda AX-1806 v1.0.0.1, where a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function can be exploited to cause a Denial of Service (DoS) through a crafted request. Public references consistently describe the vulnerability in this product/versi...

PT-2026-3773

Name of the Vulnerable Software and Affected Versions Tenda AX-1803 version 1.0.0.1 Description The Tenda AX-1803 router contains a stack overflow in the ssid parameter of the form fast setting wifi set function. This issue allows attackers to cause a Denial of Service DoS by sending a crafted...