34197 matches found
CVE-2025-63153
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the ssid parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63154
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
CVE-2025-63154
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...
TOTOLink A7000R 安全漏洞
TOTOLINK A7000R is a wireless router from China's Gion Electronics TOTOLINK that supports WiFi7 technology for home or small business network environments. The TOTOLINK A7000R suffers from a stack buffer overflow vulnerability, which stems from the ssid parameter of the urldecode function failing...
CVE-2025-63153
TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the ssid parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63153
The CVE-2025-63153 entry applies to TOTOLink A7000R firmware v9.1.0u.6115_B20201022, which contains a stack overflow in the ssid parameter processed by the urldecode function. This flaw can be triggered by a crafted request sent over the network, enabling a Denial of Service (DoS). The cited metr...
CVE-2025-63149
CVE-2025-63149 affects Tenda AX3 router (V16.03.12.10_CN). The vulnerability is a stack overflow in the urls parameter of the get_parentControl_list_Info function, caused by improper input length validation. This can be exploited by a crafted request to trigger a Denial of Service (DoS). Public s...
CVE-2025-63456
CVE-2025-63456 concerns the Tenda AX-1803 router (v1.0.0.1) with a stack overflow in the SetSysTimeCfg function triggered by the time parameter. The issue is a stack buffer overflow/length validation flaw that can be exploited by sending a crafted request to cause Denial of Service (DoS). Multipl...
PT-2025-46188
Name of the Vulnerable Software and Affected Versions Tenda AX3 version 16.03.12.10 CN Description The Tenda AX3 router contains a stack overflow in the urls parameter of the get parentControl list Info function. A crafted request can lead to a Denial of Service DoS. Recommendations At the moment...
PT-2025-46179
Name of the Vulnerable Software and Affected Versions Tenda AX-3 version 16.03.12.10 CN Description The Tenda AX-3 device contains a stack overflow issue through the shareSpeed parameter within the fromSetWifiGusetBasic function. A crafted request can lead to a Denial of Service DoS...
PT-2025-46175
Name of the Vulnerable Software and Affected Versions Tenda AX-1803 version 1.0.0.1 Description The Tenda AX-1803 version 1.0.0.1 contains a stack overflow issue. This occurs through the time parameter within the SetSysTimeCfg function. A crafted request targeting this parameter can lead to a...
PT-2025-46173
Name of the Vulnerable Software and Affected Versions Tenda AX-1803 version 1.0.0.1 Description The Tenda AX-1803 version 1.0.0.1 contains a stack overflow issue. This occurs through the wanMTU parameter within the sub 4F55C function. A crafted request can trigger this, leading to a Denial of...
PT-2025-46174
Name of the Vulnerable Software and Affected Versions Tenda AX3 version 16.03.12.10 CN Description The Tenda AX3 device contains a stack overflow issue in the deviceId parameter of the saveParentControlInfo function. A crafted request can lead to a Denial of Service DoS. Recommendations Update to...
CVE-2025-63455
Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63835
The CVE-2025-63835 entry concerns a stack-based buffer overflow in the Tenda AC18 (v15.03.05.05_multi) guestSsid parameter of the /goform/WifiGuestSet interface. The issue arises from insufficient validation of the guestSsid length, allowing an attacker to send oversized data that can cause a dev...
CVE-2025-63154
CVE-2025-63154 affects TOTOLink A7000R (V9.1.0u.6115_B20201022). Multiple connected sources describe a stack overflow in the addEffect parameter of the urldecode function, enabling denial-of-service via a crafted POST request. Details consistently identify the router family as vulnerable and poin...
CVE-2025-63457
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the sub4F55C function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63456
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63147
Tenda AX3 V16.03.12.10CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
Tenda AX3 安全漏洞
Tenda AX3 is a home dual-band Gigabit wireless router from Tenda Technology that supports Wi-Fi6 802.11ax standard and focuses on high-performance network coverage and stable connection. The Tenda AX3 suffers from a stack buffer overflow vulnerability that originates from the urls parameter in th...