CVE-2025-63147 | Tenda AX3 16.03.12.10_CN saveParentControlInfo deviceId stack-based overflow

November 10, 2025 Yanac

A vulnerability labeled as critical has been found in Tenda AX3 16.03.12.10_CN. Affected is the function saveParentControlInfo. Executing manipulation of the argument deviceId can lead to stack-based buffer overflow.

This vulnerability is handled as CVE-2025-63147. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-12651 | Live Photos on Plugin up to 0.1 on WordPress Shortcode video_src/img_src/class cross site scripting
CVE-2025-63834 | Tenda AC18 15.03.05.05_multi ssid cross site scripting