CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1899 – Tenda TX3 setPptpUserList buffer overflow
https://notcve.org/view.php?id=CVE-2025-1899
04 Mar 2025 — A vulnerability has been found in Tenda TX3 16.03.13.11_multi and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/2664521593/mycve/blob/main/Tenda/TX3/tenda_tx3_bof_5.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1898 – Tenda TX3 openSchedWifi buffer overflow
https://notcve.org/view.php?id=CVE-2025-1898
04 Mar 2025 — A vulnerability, which was classified as critical, was found in Tenda TX3 16.03.13.11_multi. Affected is an unknown function of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/2664521593/mycve/blob/main/Tenda/TX3/tenda_tx3_bof_4.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1897 – Tenda TX3 SetNetControlList buffer overflow
https://notcve.org/view.php?id=CVE-2025-1897
04 Mar 2025 — A vulnerability, which was classified as critical, has been found in Tenda TX3 16.03.13.11_multi. This issue affects some unknown processing of the file /goform/SetNetControlList. The manipulation of the argument list leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/2664521593/mycve/blob/main/Tenda/TX3/tenda_tx3_bof_3.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1896 – Tenda TX3 SetStaticRouteCfg buffer overflow
https://notcve.org/view.php?id=CVE-2025-1896
04 Mar 2025 — A vulnerability classified as critical was found in Tenda TX3 16.03.13.11_multi. This vulnerability affects unknown code of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/2664521593/mycve/blob/main/Tenda/TX3/tenda_tx3_bof_2.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1895 – Tenda TX3 setMacFilterCfg buffer overflow
https://notcve.org/view.php?id=CVE-2025-1895
04 Mar 2025 — A vulnerability classified as critical has been found in Tenda TX3 16.03.13.11_multi. This affects an unknown part of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/2664521593/mycve/blob/main/Tenda/TX3/tenda_tx3_bof_1.pdf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43024
https://notcve.org/view.php?id=CVE-2022-43024
19 Oct 2022 — Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the list parameter at /goform/SetVirtualServerCfg. Se ha detectado que Tenda TX3 versión US_TX3V1.0br_V16.03.13.11_multi_TDE01, contiene un desbordamiento de pila por medio del parámetro list en /goform/SetVirtualServerCfg • https://github.com/tianhui999/myCVE/blob/main/TX3/TX3-6.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43025
https://notcve.org/view.php?id=CVE-2022-43025
19 Oct 2022 — Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the startIp parameter at /goform/SetPptpServerCfg. Se ha detectado que Tenda TX3 versión US_TX3V1.0br_V16.03.13.11_multi_TDE01, contiene un desbordamiento de pila por medio del parámetro startIp en /goform/SetPptpServerCfg • https://github.com/tianhui999/myCVE/blob/main/TX3/TX3-1.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43026
https://notcve.org/view.php?id=CVE-2022-43026
19 Oct 2022 — Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the endIp parameter at /goform/SetPptpServerCfg. Se ha detectado que el Tenda TX3 versión US_TX3V1.0br_V16.03.13.11_multi_TDE01, contiene un desbordamiento de pila por medio del parámetro endIp en /goform/SetPptpServerCfg • https://github.com/tianhui999/myCVE/blob/main/TX3/TX3-2.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43027
https://notcve.org/view.php?id=CVE-2022-43027
19 Oct 2022 — Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the firewallEn parameter at /goform/SetFirewallCfg. Se ha detectado que el Tenda TX3 versión US_TX3V1.0br_V16.03.13.11_multi_TDE01, contiene un desbordamiento de pila por medio del parámetro firewallEn en /goform/SetFirewallCfg • https://github.com/tianhui999/myCVE/blob/main/TX3/TX3-5.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43028
https://notcve.org/view.php?id=CVE-2022-43028
19 Oct 2022 — Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the timeZone parameter at /goform/SetSysTimeCfg. Se ha detectado que el Tenda TX3 versión US_TX3V1.0br_V16.03.13.11_multi_TDE01, contiene un desbordamiento de pila por medio del parámetro timeZone en /goform/SetSysTimeCfg • https://github.com/tianhui999/myCVE/blob/main/TX3/TX3-3.md • CWE-787: Out-of-bounds Write •