Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2020-10987

🗓️ 13 Jul 2020 18:46:12Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 1124 Views🌐 WEB

The Tenda AC15 AC1900 version 15.03.05.19 is vulnerable to remote code execution

Related
Detection
Refs
Paths
Social
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for OS Command Injection in Tenda Ac15_Firmware
23 Oct 202515:30
githubexploit
ATTACKERKB		CVE-2020-10987
13 Jul 202000:00
attackerkb
BDU FSTEC		The vulnerability of the Tenda AC15 AC1900 router’s microprogramming software lies in the insufficient neutralization of special elements transmitted in URIs, allowing a hacker to execute arbitrary commands on the target system.
22 Oct 202000:00
bdu_fstec
Circl		CVE-2020-10987
5 Oct 202009:50
circl
CISA KEV Catalog		Tenda AC1900 Router AC15 Model Remote Code Execution Vulnerability
3 Nov 202100:00
cisa_kev
CNVD		Tenda AC15 AC1900 Remote Code Execution Vulnerability
14 Jul 202000:00
cnvd
Check Point Advisories		Tenda Routers Command Injection (CVE-2020-10987; CVE-2018-14558)
14 Oct 202000:00
checkpoint_advisories
Cvelist		CVE-2020-10987
13 Jul 202018:46
cvelist
Microsoft Malware Protection		Microsoft research uncovers new Zerobot capabilities
21 Dec 202220:00
mmpc
Microsoft Secure		Microsoft research uncovers new Zerobot capabilities
21 Dec 202220:00
mssecure
Rows per page
NVD
Node
tendaac15_firmwareMatch15.03.05.19
AND
tendaac15Match-
ParameterPositionPathDescriptionCWE
deviceNamerequest bodygoform/setUsbUnloadRemote command execution via POST parameter deviceName in goform/setUsbUnload on Tenda AC15/AC1900 (CVE-2020-10987).CWE-78

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 02:48Current
9.7High risk
Vulners AI Score9.7
CVSS 3.19.8
CVSS 210
EPSS0.79673
SSVC
CWE-78In Wild
tendaac15ac1900cve-2020-10987remote code executionvulnerabilitynvd
1124