Tenda Tx3 vulnerabilities

CVE-2026-2137 [HIGH] CWE-119 CVE-2026-2137: A vulnerability has been found in Tenda TX3 up to 16.03.13.11_multi. This impacts an unknown functio A vulnerability has been found in Tenda TX3 up to 16.03.13.11_multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-8958 [HIGH] CWE-119 CVE-2025-8958: A vulnerability was identified in Tenda TX3 16.03.13.11_multi_TDE01. Affected by this vulnerability A vulnerability was identified in Tenda TX3 16.03.13.11_multi_TDE01. Affected by this vulnerability is an unknown functionality of the file /goform/fast_setting_wifi_set. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-1896 [HIGH] CWE-119 CVE-2025-1896: A vulnerability classified as critical was found in Tenda TX3 16.03.13.11_multi. This vulnerability A vulnerability classified as critical was found in Tenda TX3 16.03.13.11_multi. This vulnerability affects unknown code of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-1897 [HIGH] CWE-119 CVE-2025-1897: A vulnerability, which was classified as critical, has been found in Tenda TX3 16.03.13.11_multi. Th A vulnerability, which was classified as critical, has been found in Tenda TX3 16.03.13.11_multi. This issue affects some unknown processing of the file /goform/SetNetControlList. The manipulation of the argument list leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-1898 [HIGH] CWE-119 CVE-2025-1898: A vulnerability, which was classified as critical, was found in Tenda TX3 16.03.13.11_multi. Affecte A vulnerability, which was classified as critical, was found in Tenda TX3 16.03.13.11_multi. Affected is an unknown function of the file /goform/openSchedWifi. The manipulation of the argument schedStartTime/schedEndTime leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-1899 [HIGH] CWE-119 CVE-2025-1899: A vulnerability has been found in Tenda TX3 16.03.13.11_multi and classified as critical. Affected b A vulnerability has been found in Tenda TX3 16.03.13.11_multi and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-1895 [HIGH] CWE-119 CVE-2025-1895: A vulnerability classified as critical has been found in Tenda TX3 16.03.13.11_multi. This affects a A vulnerability classified as critical has been found in Tenda TX3 16.03.13.11_multi. This affects an unknown part of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.