CVE-2025-63454 | Tenda AX-3 16.03.12.10_CN get_parentControl_list_Info deviceId stack-based overflow (EUVD-2025-37398)

A vulnerability, which was classified as critical, was found in Tenda AX-3 16.03.12.10_CN. This vulnerability affects the function get_parentControl_list_Info. Executing manipulation of the argument deviceId can lead to stack-based buffer overflow.

This vulnerability is registered as CVE-2025-63454. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More