Tenda O3
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Tenda O3.
By the Year
In 2026 there have been 0 vulnerabilities in Tenda O3. Last year, in 2025 O3 had 6 security vulnerabilities published. Right now, O3 is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 6 | 8.80 |
It may take a day or so for new O3 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Tenda O3 Security Vulnerabilities
Stack Buffer Overflow in Tenda O3 1.0.0.10(2478) sysAutoReboot
CVE-2025-12214
8.8 - High
- October 27, 2025
A vulnerability was detected in Tenda O3 1.0.0.10(2478). This issue affects the function SetValue/GetValue of the file /goform/sysAutoReboot. Performing a manipulation of the argument enable results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used.
Stack Overflow
Tenda O3 1.0.0.10 stack-based buffer overflow via /goform/setVlanConfig
CVE-2025-12213
8.8 - High
- October 27, 2025
A security vulnerability has been detected in Tenda O3 1.0.0.10(2478). This vulnerability affects the function SetValue/GetValue of the file /goform/setVlanConfig. Such manipulation of the argument lan leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.
Stack Overflow
RCE via Buffer Overflow in Tenda O3 1.0.0.10 /goform/setNetworkService
CVE-2025-12212
8.8 - High
- October 27, 2025
A weakness has been identified in Tenda O3 1.0.0.10(2478). This affects the function SetValue/GetValue of the file /goform/setNetworkService. This manipulation of the argument upnpEn causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.
Stack Overflow
Stack BOF in Tenda O3 1.0.0.10 via dmzIP (Set/GetValue)
CVE-2025-12211
8.8 - High
- October 27, 2025
A security flaw has been discovered in Tenda O3 1.0.0.10(2478). Affected by this issue is the function SetValue/GetValue of the file /goform/setDmzInfo. The manipulation of the argument dmzIP results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.
Stack Overflow
Tenda O3 1.0.0.10 Remote Buffer Overflow via /goform/AdvSetLanip
CVE-2025-12210
8.8 - High
- October 27, 2025
A vulnerability was identified in Tenda O3 1.0.0.10(2478). Affected by this vulnerability is the function SetValue/GetValue of the file /goform/AdvSetLanip. The manipulation of the argument lanIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.
Stack Overflow
Tenda O3 1.0.0.10 Stack-based Buffer Overflow via /goform/setDhcpConfig
CVE-2025-12209
8.8 - High
- October 27, 2025
A vulnerability was determined in Tenda O3 1.0.0.10(2478). Affected is the function SetValue/GetValue of the file /goform/setDhcpConfig. Executing a manipulation of the argument dhcpEn can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.
Stack Overflow
