Tenda AX-3 fromAdvSetMacMtuWan Function Stack Buffer Overflow Vulnerability

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability, which stems from the wanMTU2 parameter in the fromAdvSetMacMtuWan function failing to correctly validate...

Tenda AX-3 安全漏洞

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability, which stems from the wanMTU2 parameter in the fromAdvSetMacMtuWan function failing to correctly validate...

CVE-2025-71027

CVE-2025-71027 applies to Tenda AX-3 (v16.03.12.10_CN). A stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function is described across CNVD/CNNVD/Red Hat/NVD feeds as causing a Denial of Service via a crafted request. The connected sources confirm the vulnerable component and t...

Tenda AX-1803 安全漏洞

Tenda AX-1803 is a dual-band Gigabit WiFi6 wireless router from Tenda that supports dual bands of 2.4GHz and 5GHz with a maximum transmission rate of 1774Mbps for home or small office scenarios. The Tenda AX-1803 suffers from a stack buffer overflow vulnerability that originates from the wanMTU...

CVE-2025-63457

Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the sub4F55C function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

PT-2025-46173

Name of the Vulnerable Software and Affected Versions Tenda AX-1803 version 1.0.0.1 Description The Tenda AX-1803 version 1.0.0.1 contains a stack overflow issue. This occurs through the wanMTU parameter within the sub 4F55C function. A crafted request can trigger this, leading to a Denial of...

CVE-2025-60343

Multiple buffer overflows in the AdvSetMacMtuWan function of Tenda AC6 v.15.03.06.50 allows attackers to cause a Denial of Service DoS via injecting a crafted payload into the wanMTU, wanSpeed, cloneType, mac, serviceName, serverName, wanMTU2, wanSpeed2, cloneType2, mac2, serviceName2, and...

CVE-2025-60343

CVE-2025-60343 affects Tenda AC6, specifically version 15.03.06.50, where the AdvSetMacMtuWan function contains multiple buffer overflows. Descriptions across CNVD, CNNVD, NVD, RH-CVE, EUVD and others indicate input-length validation issues leading to Denial of Service, with some sources noting p...

EUVD-2025-29161

Malicious code in bioql PyPI...

EUVD-2025-32183

Malicious code in bioql PyPI...

CVE-2025-60663

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanMTU parameter in the fromAdvSetMacMtuWan function...

CVE-2025-60663

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanMTU parameter in the fromAdvSetMacMtuWan function...

CVE-2025-60663

The CVE-2025-60663 entry concerns Tenda AC18 (firmware version 15.03.05.19) and describes a stack overflow in the wanMTU handling within the fromAdvSetMacMtuWan function. The root cause is improper validation/length handling of the wanMTU input, leading to a stack buffer overflow. The reported im...

CVE-2025-10432

A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerability affects the function checkparamchanged of the file /goform/AdvSetMacMtuWa of the component HTTP Request Handler. Performing manipulation of the argument wanMTU results in stack-based buffer overflow. Remote exploitation of...

CVE-2025-10432

A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerability affects the function checkparamchanged of the file /goform/AdvSetMacMtuWa of the component HTTP Request Handler. Performing manipulation of the argument wanMTU results in stack-based buffer overflow. Remote exploitation of...

CVE-2025-10432 Tenda AC1206 HTTP Request AdvSetMacMtuWa check_param_changed stack-based overflow

A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerability affects the function checkparamchanged of the file /goform/AdvSetMacMtuWa of the component HTTP Request Handler. Performing manipulation of the argument wanMTU results in stack-based buffer overflow. Remote exploitation of...

Tenda AC1206 安全漏洞

Tenda AC1206 is a wireless gigabit router from Tenda China. A security vulnerability exists in Tenda AC1206 version 15.03.06.23, which originates from the incorrect manipulation of the parameter wanMTU by the function checkparamchanged in the file /goform/AdvSetMacMtuWa in the HTTP Request Handle...

CVE-2025-9791 Tenda AC20 fromAdvSetMacMtuWan stack-based overflow

A weakness has been identified in Tenda AC20 16.03.08.05. This vulnerability affects unknown code of the file /goform/fromAdvSetMacMtuWan. This manipulation of the argument wanMTU causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made availabl...

CVE-2025-9791 Tenda AC20 fromAdvSetMacMtuWan stack-based overflow

A weakness has been identified in Tenda AC20 16.03.08.05. This vulnerability affects unknown code of the file /goform/fromAdvSetMacMtuWan. This manipulation of the argument wanMTU causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made availabl...

Tenda AC20 安全漏洞

The Tenda AC20 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC20 version 16.03.08.05, which originates from the parameter wanMTU in the file /goform/fromAdvSetMacMtuWan that fails to correctly validate the length of the incoming data, and ca...