CNNVD-202601-3368 Information
CNNVD ID
CNNVD-202601-3368
Related CVE
- CNNVD Published: 2026-01-21
Description (Chinese)
Tenda Ax3是中国腾达(Tenda)公司的一款 Ax1800 千兆端口双频 Wifi 6 无线路由器。 Tenda Ax3 v16.03.12.11版本存在安全漏洞,该漏洞源于formGetIptv函数中citytag栈缓冲区处理不当,可能导致内存损坏和远程代码执行。
Description (English)
Tenda Ax3 is an Ax 1800 giga-port double-frequency Wifi 6 wireless router of Tenda China. The security loophole in the version of Tenda Ax3 v16.03.12.11 stems from the inappropriate handling of the citytag buffer zone in the ForumGetIptv function, which may result in memory damage and remote code enforcement.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
腾达
Published
2026-01-21
Last Modified
2026-02-24
References
https://river-brow-763.notion.site/Tenda-AX3-Buffer-Overflow-in-formGetIptv-2c9a595a7aef8043a091e6722b8e255a https://river-brow-763.notion.site/Tenda-AX3-Buffer-Overflow-in-formGetIptv-2c9a595a7aef8043a091e6722b8e255a?source=copy_link https://access.redhat.com/security/cve/cve-2025-69766
Share on: