Tenda: >> Ax3 Firmware >> 16.03.12.10_cn Security Vulnerabilities
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function WanParameterSetting. This vulnerability allows attackers to execute arbitrary commands via the gateway, dns1, and dns2 parameters.
CVSS Score
9.8
EPSS Score
0.131
Published
2022-02-04
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formWifiBasicSet. This vulnerability allows attackers to cause a Denial of Service (DoS) via the security and security_5g parameters.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
Tenda AX3 v16.03.12.10_CN was discovered to contain a stack overflow in the function formSetQosBand. This vulnerability allows attackers to cause a Denial of Service (DoS) via the list parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-02-04
Page 3