Lucene search
K

28 matches found

Cvelist
Cvelist
added 2024/03/24 5:31 a.m.23 views

CVE-2024-2854 Tenda AC18 setsambacfg formSetSambaConf os command injection

A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS10AI score0.03897EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/03/24 5:31 a.m.20 views

CVE-2024-2854 Tenda AC18 setsambacfg formSetSambaConf os command injection

A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS7.4AI score0.03897EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/03/24 5:0 a.m.15 views

CVE-2024-2853 Tenda AC10U setsambacfg formSetSambaConf os command injection

A vulnerability was found in Tenda AC10U 15.03.06.48/15.03.06.49. It has been rated as critical. This issue affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. The attack may be initiated remotely. The...

6.5CVSS7.6AI score0.04009EPSS
Exploits1References3
OSV
OSV
added 2024/03/24 3:15 a.m.6 views

CVE-2024-2851

A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...

9.8CVSS5.7AI score
Exploits0References3
Cvelist
Cvelist
added 2024/03/24 3:0 a.m.24 views

CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection

A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...

6.5CVSS10AI score0.04009EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/03/24 3:0 a.m.14 views

CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection

A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...

6.5CVSS9.9AI score0.04009EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/03/24 12:0 a.m.3 views

Tenda AC18 操作系统命令注入漏洞

Tenda AC18 is a router from Tenda, China. An OS command injection vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an OS command injection in the usbName parameter of the formSetSambaConf method on the /goform/setsambacfg page...

9.8CVSS7AI score0.03897EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/03/16 12:0 a.m.6 views

PT-2024-2386 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 versions 15.03.05.18 through 15.03.20 multi Description: The issue is related to the function formSetSambaConf at the /goform/setsambacfg endpoint, where the usbName parameter is not properly sanitized, leading to OS command...

9.8CVSS7.2AI score0.04009EPSS
Exploits1References7
Rows per page
Query Builder