Home/Product/tendacn g3 firmware
Product

tendacn g3 firmware

53 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-57060
<= 15.11.0.17
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the rules parameter in the dns_forward_rule_store functi
7.5HIGH
 CVE-2025-57078
<= 15.11.0.17
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the pppoeServerWhiteMacIndex parameter in the formModify
7.5HIGH
 CVE-2025-57072
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the staticRouteGateway parameter in the formSetStaticRou
7.5HIGH
 CVE-2025-57071
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the vpnUsers parameter in the formAddVpnUsers function.
7.5HIGH
 CVE-2025-57070
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the gstUp parameter in the guestWifiRuleRefresh function
7.5HIGH
 CVE-2025-57069
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the pPppUser parameter in the getsinglepppuser function.
7.5HIGH
 CVE-2025-57064
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the bindDhcpIndex parameter in the modifyDhcpRule functi
7.5HIGH
 CVE-2025-57063
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the portMappingIndex parameter in the formDelPortMapping
7.5HIGH
 CVE-2025-57062
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the delDhcpIndex parameter in the formDelDhcpRule functi
7.5HIGH
 CVE-2025-57061
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain multiple stack overflows in the formIPMacBindModify function via the ruleId,
7.5HIGH
 CVE-2025-57059
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the dhcpIndex parameter in the addDhcpRule function. Thi
7.5HIGH
 CVE-2025-57058
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain multiple stack overflows in the formSetDebugCfg function via the pEnable, pL
7.5HIGH
 CVE-2025-57057
<= 15.11.0.17\(9502\)
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the listStr parameter in the ipMacBindListStore function
7.5HIGH
 CVE-2024-50854
all versions
Tenda G3 v3.0 v15.11.0.20 was discovered to contain a stack overflow via the formSetPortMapping function.
8.8HIGH
 CVE-2024-50853
all versions
Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetDebugCfg function.
8.8HIGH
 CVE-2024-50852
all versions
Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetUSBPartitionUmount function.
8.8HIGH
 CVE-2024-48192
all versions
Tenda G3 v15.01.0.5(2848_755)_EN was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows atta
8.0HIGH
 CVE-2024-46628
all versions
Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE) vulnerability via the usbPartitionNa
9.8CRITICAL
 CVE-2024-8225
all versions
A vulnerability, which was classified as critical, was found in Tenda G3 15.11.0.20. Affected is the function formSetSysTime of th
8.8HIGH
 CVE-2024-8224
all versions
A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20. This issue affects the function formSetD
8.8HIGH
 CVE-2024-4165
all versions
A vulnerability, which was classified as critical, was found in Tenda G3 15.11.0.17(9502). Affected is the function modifyDhcpRule
8.8HIGH
 CVE-2024-4164
all versions
A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.17(9502). This issue affects the function fo
8.8HIGH
 CVE-2022-36586
all versions
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by strcpy in function 0x869f4 in
9.8CRITICAL
 CVE-2022-36585
all versions
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, in httpd binary, the addDhcpRule function has a buffer overflow caused by sscanf.
9.8CRITICAL
 CVE-2022-36587
all versions
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability caused by sprintf in function in the htt
9.8CRITICAL
 CVE-2022-36584
all versions
In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, the getsinglepppuser function has a buffer overflow caused by sscanf.
9.8CRITICAL
 CVE-2022-24172
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formAddDhcpBindRule. This
7.5HIGH
 CVE-2022-24171
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetP
9.8CRITICAL
 CVE-2022-24170
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetI
9.8CRITICAL
 CVE-2022-24169
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formIPMacBindAdd. This vu
7.5HIGH
 CVE-2022-24168
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetI
9.8CRITICAL
 CVE-2022-24167
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetD
9.8CRITICAL
 CVE-2022-24166
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetSysTime. This vuln
7.5HIGH
 CVE-2022-24165
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetQ
9.8CRITICAL
 CVE-2022-24164
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetVirtualSer. This v
7.5HIGH
 CVE-2021-45997
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetPortMapping. This
7.5HIGH
 CVE-2021-45996
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetPortMapping. This
7.5HIGH
 CVE-2021-45995
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetStaticRoute. This
7.5HIGH
 CVE-2021-45994
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formDelDhcpRule. This vul
7.5HIGH
 CVE-2021-45993
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formIPMacBindModify. This
7.5HIGH
 CVE-2021-45992
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formSetQvlanList. This vu
7.5HIGH
 CVE-2021-45991
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formAddVpnUsers. This vul
7.5HIGH
 CVE-2021-45990
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function uploadPi
9.8CRITICAL
 CVE-2021-45989
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function guestWifiRuleRefresh. Thi
7.5HIGH
 CVE-2021-45988
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a stack overflow in the function formAddDnsForward. This v
7.5HIGH
 CVE-2021-45987
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetN
9.8CRITICAL
 CVE-2021-45986
all versions
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetU
9.8CRITICAL
 CVE-2021-27692
all versions
Command Injection in Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote att
9.8CRITICAL
 CVE-2021-27691
all versions
Command Injection in Tenda G0 routers with firmware versions v15.11.0.6(9039)_CN and v15.11.0.5(5876)_CN , and Tenda G1 and G3 rou
9.8CRITICAL
 CVE-2021-27707
all versions
Buffer Overflow in Tenda G1 and G3 routers with firmware v15.11.0.17(9502)_CN allows remote attackers to execute arbitrary code vi
9.8CRITICAL
 CVE-2021-27706
all versions
Buffer Overflow in Tenda G1 and G3 routers with firmware version V15.11.0.17(9502)_CN allows remote attackers to execute arbitrary
9.8CRITICAL
 CVE-2021-27705
all versions
Buffer Overflow in Tenda G1 and G3 routers with firmware v15.11.0.17(9502)_CN allows remote attackers to execute arbitrary code vi
9.8CRITICAL
 CVE-2019-11561
all versions
The Chuango 433 MHz burglar-alarm product line is vulnerable to a Denial of Service attack. When the condition is triggered, the O
5.9MEDIUM
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh