Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Tenda
O3 Firmware

tenda o3 firmware Vulnerabilities: CVEs, CISA KEV & Security Advisories

16 CVEs

tenda o3 firmware Vulnerabilities

CVE security advisories and vulnerability history for o3 firmware by tenda.

16

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

16

Public exploits

With known exploit

8.4

Avg CVSS

2024–2025

Last updated August 22, 2025

Overview

tenda o3 firmware has 16 published CVE records since 2024, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 16 have a known public exploit. The average CVSS base score across scored CVEs is 8.4.

This page aggregates every publicly disclosed vulnerability (CVE) affecting tenda o3 firmware, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of tenda o3 firmware's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical2

High11

Medium3

Low0

In CISA’s Known Exploited Vulnerabilities catalog

0

None of tenda o3 firmware's CVEs are currently listed in CISA's KEV catalog.

Public exploits

16

16 of tenda o3 firmware's CVEs have a known public exploit available.

Affected versions and CVEs

Browse every tenda o3 firmware version named in a CVE, then pick one to see only the CVEs that affect it.

No specific affected versions are recorded for tenda o3 firmware; the CVEs below apply to the product without a version pin.

16 CVEs

Sort

Critical vulnerability · 2025-08-22
CVE-2025-55613
Public exploit
CWE-120
Critical · CVSS 9.8
EPSS 0.1% (35th pct)2025-08-22
Tenda O3V2 httpd setWrlFilterList formWifiMacFilterSet stack-based overflow
CVE-2025-7423
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-11
Tenda O3V2 httpd setNetworkService setAutoReboot stack-based overflow
CVE-2025-7422
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-11
Tenda O3V2 httpd operateMacFilter fromMacFilterModify stack-based overflow
CVE-2025-7421
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-11
Tenda O3V2 httpd setWrlBasicInfo formWifiBasicSet stack-based overflow
CVE-2025-7420
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-10
Tenda O3V2 httpd setRateTest fromSpeedTestSet stack-based overflow
CVE-2025-7419
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-10
Tenda O3V2 httpd setPing fromPingResultGet stack-based overflow
CVE-2025-7418
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-10
Tenda O3V2 httpd setPingInfo fromNetToolGet stack-based overflow
CVE-2025-7417
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-10
Tenda O3V2 httpd setSysTimeInfo fromSysToolTime stack-based overflow
CVE-2025-7416
Public exploit
CWE-121
High · CVSS 8.8
EPSS 1.6% (82th pct)2025-07-10
Tenda O3V2 httpd getTraceroute fromTraceroutGet command injection
CVE-2025-7415
Public exploit
CWE-77
Medium · CVSS 6.3
EPSS 5.3% (90th pct)2025-07-10
Tenda O3V2 httpd setPingInfo fromNetToolGet os command injection
CVE-2025-7414
Public exploit
CWE-78
Medium · CVSS 6.3
EPSS 5.7% (91th pct)2025-07-10
Medium vulnerability · 2024-11-06
CVE-2024-51409
Public exploit
CWE-120
Medium · CVSS 6.5
EPSS 1.3% (80th pct)2024-11-06
Tenda O3 setMacFilterList fromSafeSetMacFilter stack-based overflow
CVE-2024-7152
Public exploit
CWE-121
High · CVSS 8.8
EPSS 0.3% (51th pct)2024-07-27
Tenda O3 setMacFilter fromMacFilterSet stack-based overflow
CVE-2024-7151
Public exploit
CWE-121
High · CVSS 8.8
EPSS 0.3% (51th pct)2024-07-27
Critical vulnerability · 2024-06-04
CVE-2024-36604
Public exploit
CWE-77
Critical · CVSS 9.8
EPSS 3.8% (88th pct)2024-06-04
High vulnerability · 2024-05-09
CVE-2024-34338
Public exploit
CWE-77
High · CVSS 7.2
EPSS 1.4% (80th pct)2024-05-09

Common weakness types

The CWE weakness categories most often found in tenda o3 firmware CVEs. Follow any weakness for its full explanation.

CWE-121Stack-based Buffer Overflow10 CVEs
CWE-77Improper Neutralization of Special Elements used in a Command ('Command Injection')3 CVEs
CWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')2 CVEs
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')1 CVE

Disclosure activity by year

How many tenda o3 firmware CVEs were published each year.

2024

5

2025

11

Other tenda products

Browse vulnerabilities for other products by tenda.

ac6113 CVEs ac6 firmware108 CVEs ac18 firmware103 CVEs ac18102 CVEs ac1094 CVEs ac993 CVEs ac10 firmware92 CVEs ac9 firmware92 CVEs

All tenda vulnerabilities

Frequently asked questions

Common questions about tenda o3 firmware vulnerabilities.

How many CVEs does tenda o3 firmware have?

tenda o3 firmware has 16 published CVE records since 2024.

How many tenda o3 firmware CVEs are in CISA KEV?

None of tenda o3 firmware's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for tenda o3 firmware vulnerabilities?

Yes — 16 of tenda o3 firmware's CVEs have a known public exploit.

What are the most common weakness types in tenda o3 firmware CVEs?

tenda o3 firmware's CVEs most often map to these CWE weakness types: CWE-121 (Stack-based Buffer Overflow), CWE-77 (Improper Neutralization of Special Elements used in a Command ('Command Injection')), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')).

How many critical tenda o3 firmware vulnerabilities are there?

tenda o3 firmware has 2 critical and 11 high-severity CVEs.

What is the average severity of tenda o3 firmware CVEs?

The average CVSS base score across tenda o3 firmware's scored CVEs is 8.4.

References

All tenda vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track tenda o3 firmware vulnerabilities

Monitor new tenda o3 firmware vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References