📦 Ax3 Firmware
by Tenda
🔍 What is Ax3 Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows remote attackers to execute arbitrary code on Tenda AX3 routers by exploiting a stack-based buffer overflow in the formGetIptv function. Attackers can send specially crafted ...
This vulnerability allows remote attackers to execute arbitrary code on Tenda AX3 routers by exploiting a stack overflow in the formSetIptv function. Attackers can send specially crafted requests to t...
This vulnerability allows remote attackers to execute arbitrary code on Tenda AX3 routers by exploiting a stack overflow in the formSetIptv function via the vlanId parameter. Attackers can achieve ful...
This vulnerability allows remote attackers to execute arbitrary code on Tenda AX3 routers by exploiting a stack-based buffer overflow in the formGetIptv function. Attackers can achieve full system com...
CVE-2023-27239 is a critical stack overflow vulnerability in Tenda AX3 routers that allows remote attackers to execute arbitrary code by sending specially crafted requests to the /goform/WifiGuestSet ...
CVE-2023-24212 is a critical stack overflow vulnerability in Tenda AX3 routers that allows remote attackers to execute arbitrary code or cause denial of service by sending specially crafted requests t...
This vulnerability is a stack overflow in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can send specially crafted time parameters to cause a Denial of Service (DoS), potentiall...
This CVE describes a critical stack buffer overflow vulnerability in Tenda-AX3 routers that allows remote code execution. Attackers can exploit it by sending specially crafted HTTP POST requests to th...
CVE-2022-24148 is a critical command injection vulnerability in Tenda AX3 routers that allows attackers to execute arbitrary system commands via the dmzIp parameter in the mDMZSetCfg function. This af...
This vulnerability allows remote attackers to execute arbitrary commands on Tenda AX3 routers via command injection in the remoteIp parameter. Attackers can gain full control of affected devices, pote...
CVE-2022-24144 is a critical command injection vulnerability in Tenda AX3 routers that allows attackers to execute arbitrary system commands by manipulating gateway, dns1, and dns2 parameters. This af...
This CVE describes a stack overflow vulnerability in Tenda AX3 routers running firmware version V16.03.12.10_CN. Attackers can exploit this by sending specially crafted requests to the urls parameter ...
A buffer overflow vulnerability exists in Tenda AX3 routers running firmware version V16.03.12.10_CN. Attackers can exploit this by sending specially crafted NTP server parameters to the fromSetSysTim...
This CVE describes a buffer overflow vulnerability in Tenda AX3 routers running firmware version V16.03.12.10_CN. Attackers can exploit this by sending specially crafted requests to the serverName par...
This vulnerability in Tenda AX3 routers allows attackers to trigger a stack buffer overflow via the ssid parameter in the form_fast_setting_wifi_set function, leading to Denial of Service (DoS). Attac...
CVE-2023-27042 is a buffer overflow vulnerability in Tenda AX3 routers that allows remote attackers to execute arbitrary code or cause denial of service via the /goform/SetFirewallCfg endpoint. This a...
CVE-2022-24152 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending specially crafted requests to the fromSetRouteStati...
This vulnerability is a stack overflow in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can send specially crafted rebootTime parameter to the formSetRebootTimer function, causi...
CVE-2022-24156 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending specially crafted requests to the formSetVirtualSer...
CVE-2022-24158 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending specially crafted requests to the fromSetIpMacBind ...
CVE-2022-24160 is a stack overflow vulnerability in Tenda AX3 routers that allows attackers to cause Denial of Service (DoS) by sending specially crafted requests to the devName parameter. This affect...
CVE-2022-24162 is a stack overflow vulnerability in Tenda AX3 routers running firmware version 16.03.12.10_CN. Attackers can exploit this by sending specially crafted requests to the saveParentControl...
This CVE describes a stack overflow vulnerability in Tenda AX3 and AX12 routers' form_fast_setting_wifi_set function. Attackers can exploit it by sending specially crafted timeZone parameter values to...
Tenda AX3 routers running firmware version 16.03.12.10_CN contain a stack overflow vulnerability in the formSetQosBand function. Attackers can exploit this by sending specially crafted requests to the...
This CVE describes a stack overflow vulnerability in Tenda AX3 routers that allows remote attackers to execute arbitrary code by sending specially crafted requests to the formSetIptv endpoint. The vul...