28 matches found
CVE-2024-2854 Tenda AC18 setsambacfg formSetSambaConf os command injection
A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-2854 Tenda AC18 setsambacfg formSetSambaConf os command injection
A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-2853 Tenda AC10U setsambacfg formSetSambaConf os command injection
A vulnerability was found in Tenda AC10U 15.03.06.48/15.03.06.49. It has been rated as critical. This issue affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. The attack may be initiated remotely. The...
CVE-2024-2851
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...
CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...
CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...
Tenda AC18 操作系统命令注入漏洞
Tenda AC18 is a router from Tenda, China. An OS command injection vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an OS command injection in the usbName parameter of the formSetSambaConf method on the /goform/setsambacfg page...
PT-2024-2386 · Tenda · Tenda Ac15
Name of the Vulnerable Software and Affected Versions: Tenda AC15 versions 15.03.05.18 through 15.03.20 multi Description: The issue is related to the function formSetSambaConf at the /goform/setsambacfg endpoint, where the usbName parameter is not properly sanitized, leading to OS command...