2 matches found
CVE-2022-35555
A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.94122, which allows attackers to construct cmdinput parameters for arbitrary command execution...
CVE-2022-35555
The CVE-2022-35555 issue affects Tenda W6, specifically version 1.0.0.9(4122). A command injection exists in the /goform/exeCommand API, enabling attackers to craft cmdinput parameters for arbitrary command execution. CVSSv3.1: 9.8 (CRITICAL), network access, no user interaction. Practical impact...