Vulnerability Details CVE-2025-63454
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the deviceId parameter in the get_parentControl_list_Info function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.3%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2025-63454
-
cpe:2.3:h:tenda:ax3:-
-
cpe:2.3:o:tenda:ax3_firmware:16.03.12.10_cn