Shuhao Shen

22 exploits Active since Oct 2025
CVE-2025-63152 WRITEUP HIGH WRITEUP
Tenda AX3 V16.03.12.10_CN - Buffer Overflow
Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the wpapsk_crypto parameter of the wlSetExternParameter function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63454 WRITEUP HIGH WRITEUP
Tenda AX-3 <16.03.12.10_CN - Buffer Overflow
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the deviceId parameter in the get_parentControl_list_Info function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63455 WRITEUP HIGH WRITEUP
Tenda AX-3 v16.03.12.10_CN - Buffer Overflow
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63458 WRITEUP HIGH WRITEUP
Tenda AX-1803 v1.0.0.1 - DoS
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the timeZone parameter in the form_fast_setting_wifi_set function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63459 WRITEUP HIGH WRITEUP
Totolink A7000R v9.1.0u.6115_B20201022 - DoS
Totolink A7000R v9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub_421CF0 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63460 WRITEUP HIGH WRITEUP
Totolink A7000R v9.1.0u.6115_B20201022 - DoS
Totolink A7000R v9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub_4222E0 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63461 WRITEUP HIGH WRITEUP
Totolink A7000R v9.1.0u.6115_B20201022 - DoS
Totolink A7000R v9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the urldecode function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63462 WRITEUP HIGH WRITEUP
Totolink A7000R v9.1.0u.6115_B20201022 - DoS
Totolink A7000R v9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the wifiOff parameter in the sub_421A04 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63463 WRITEUP HIGH WRITEUP
Totolink LR350 v9.3.5u.6369_B20220309 - Buffer Overflow
Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the wifiOff parameter in the sub_4232EC function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63464 WRITEUP HIGH WRITEUP
Totolink LR350 v9.3.5u.6369_B20220309 - Buffer Overflow
Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the ssid parameter in the sub_42396C function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-63465 WRITEUP HIGH WRITEUP
Totolink LR350 v9.3.5u.6369_B20220309 - Buffer Overflow
Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the ssid parameter in the sub_422880 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70645 WRITEUP HIGH WRITEUP
Tenda Ax1806 Firmware - Stack Buffer Overflow
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70648 WRITEUP HIGH WRITEUP
Tenda Ax1803 Firmware - Stack Buffer Overflow
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of the sub_727F4 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70650 WRITEUP HIGH WRITEUP
Tenda Ax1806 Firmware - Stack Buffer Overflow
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70651 WRITEUP HIGH WRITEUP
Tenda Ax1803 Firmware - Stack Buffer Overflow
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the form_fast_setting_wifi_set function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70744 WRITEUP HIGH WRITEUP
Tenda Ax1806 Firmware - Stack Buffer Overflow
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the cloneType parameter of the sub_65B5C function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70746 WRITEUP HIGH WRITEUP
Tenda Ax1806 Firmware - Stack Buffer Overflow
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the timeZone parameter of the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70747 WRITEUP HIGH WRITEUP
Tenda Ax1806 Firmware - Stack Buffer Overflow
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the serviceName parameter of the sub_65A28 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-70753 WRITEUP HIGH WRITEUP
Tenda Ax1806 Firmware - Out-of-Bounds Write
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of the sub_4CA50 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-71024 WRITEUP HIGH WRITEUP
Tenda Ax3 Firmware - Out-of-Bounds Write
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the serviceName2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-71025 WRITEUP HIGH WRITEUP
Tenda Ax3 Firmware - Out-of-Bounds Write
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5
CVE-2025-71027 WRITEUP HIGH WRITEUP
Tenda Ax3 Firmware - Out-of-Bounds Write
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
CVSS 7.5