This page lists publicly disclosed CVE vulnerabilities affecting tenda ax1806_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-70644 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub_60CFC function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.31% | 2026-01-21 | 2026-06-17 |
| CVE-2025-70650 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.31% | 2026-01-21 | 2026-06-17 |
| CVE-2025-70645 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.32% | 2026-01-21 | 2026-06-17 |
| CVE-2025-71020 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security parameter of the sub_4C408 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.31% | 2026-01-16 | 2026-06-17 |
| CVE-2025-70746 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the timeZone parameter of the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.40% | 2026-01-16 | 2026-06-17 |
| CVE-2025-70656 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the mac parameter of the sub_65B5C function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.31% | 2026-01-15 | 2026-06-17 |
| CVE-2025-71019 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the wanSpeed parameter of the sub_65B5C function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.31% | 2026-01-15 | 2026-06-17 |
| CVE-2025-70744 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the cloneType parameter of the sub_65B5C function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.31% | 2026-01-15 | 2026-06-17 |
| CVE-2025-71021 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the serverName parameter of the sub_65A28 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.39% | 2026-01-14 | 2026-06-17 |
| CVE-2025-70747 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the serviceName parameter of the sub_65A28 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.47% | 2026-01-14 | 2026-06-17 |
| CVE-2025-70753 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of the sub_4CA50 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request. | [email protected] | 7.5 | 0.38% | 2026-01-13 | 2026-06-17 |
| CVE-2024-44557 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function setIptvInfo. | [email protected] | 9.8 | 0.61% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44555 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function setIptvInfo. | [email protected] | 9.8 | 0.73% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44553 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function formGetIptv. | [email protected] | 9.8 | 0.63% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44552 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formGetIptv. | [email protected] | 9.8 | 0.38% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44551 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formGetIptv. | [email protected] | 9.8 | 0.63% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44550 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function formGetIptv. | [email protected] | 9.8 | 0.63% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44549 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function formGetIptv. | [email protected] | 9.8 | 0.38% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44558 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function setIptvInfo. | [email protected] | 9.8 | 0.63% | 2024-08-26 | 2026-06-17 |
| CVE-2024-44556 | Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function setIptvInfo. | [email protected] | 9.8 | 0.38% | 2024-08-26 | 2026-06-17 |