Lucene search
+L

79 matches found

Positive Technologies
Positive Technologies
added 2023/05/16 12:0 a.m.13 views

PT-2023-3384 · Tenda · Tenda Ac5

Name of the Vulnerable Software and Affected Versions: Tenda AC5 router version V15.03.06.28 Description: The issue is related to insufficient input validation in the Tenda AC5 router's firmware, which can be exploited by a remote attacker to execute arbitrary code using the Mac parameter at the...

10CVSS9.5AI score0.01998EPSS
Exploits1References6
Cvelist
Cvelist
added 2023/05/16 12:0 a.m.39 views

CVE-2023-31587

Tenda AC5 router V15.03.06.28 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10AI score0.01998EPSS
Exploits1References3
CVE
CVE
added 2023/05/16 12:0 a.m.86 views

CVE-2023-31587

CVE-2023-31587 affects Tenda AC5 router V15.03.06.28. A remote code execution (RCE) vulnerability exists via the Mac parameter at ip/goform/WriteFacMac, arising from insufficient input validation on the Mac field. Documented impact is arbitrary code execution with network access. Several sources ...

9.8CVSS9.9AI score0.01998EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2022/12/23 12:0 a.m.40 views

Tenda F1203 Command Injection Vulnerability

Tenda F1203 is a 11AC 1200M intelligent dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. and Ali. A command injection vulnerability exists in Tenda F1203 V2.0.1.6. An attacker can use this vulnerability to perform command injection via the mac parameter of...

9.8CVSS9.7AI score0.02446EPSS
Exploits1References1
OSV
OSV
added 2022/12/20 3:15 p.m.3 views

CVE-2022-46538

Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac...

9.8CVSS5.8AI score0.02446EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/12/20 12:0 a.m.34 views

CVE-2022-46538

Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac...

10AI score0.02446EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/12/20 12:0 a.m.7 views

Tenda F1203 操作系统命令注入漏洞

Tenda F1203 is a 11AC 1200M intelligent dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. and Ali. A command injection vulnerability exists in Tenda F1203 V2.0.1.6. An attacker can use this vulnerability to perform command injection via the mac parameter of...

9.8CVSS7.8AI score0.02446EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/12/20 12:0 a.m.6 views

PT-2022-27892 · Tenda · Tenda F1203

Name of the Vulnerable Software and Affected Versions: Tenda F1203 version 2.0.1.6 Description: A command injection issue was discovered via the mac parameter at the "/goform/WriteFacMac" API endpoint. Recommendations: For Tenda F1203 version 2.0.1.6, as a temporary workaround, consider restricti...

9.8CVSS9.6AI score0.02446EPSS
Exploits1References3
NVD
NVD
added 2022/06/14 3:15 a.m.21 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10CVSS0.32751EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/06/14 3:15 a.m.638 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10CVSS8AI score0.32751EPSS
In wildExploits1References2
OSV
OSV
added 2022/06/14 3:15 a.m.4 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

9.8CVSS7.9AI score0.32751EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/14 2:41 a.m.33 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10AI score0.32751EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/06/14 12:0 a.m.6 views

PT-2022-20739 · Tenda · Tenda Ac18

Name of the Vulnerable Software and Affected Versions: Tenda AC18 router versions V15.03.05.05 through V15.03.05.19 Description: A remote code execution RCE issue was discovered via the Mac parameter at the "ip/goform/WriteFacMac" endpoint. This allows for potential exploitation. Recommendations:...

10CVSS7.6AI score0.32751EPSS
Exploits1References5
CNVD
CNVD
added 2022/03/25 12:0 a.m.21 views

Tenda M3 Command Injection Vulnerability (CNVD-2022-33113)

Tenda M3 is an access control from Tenda, a Chinese company. Tenda M3 is vulnerable to command injection, which stems from the failure of the component /goform/WriteFacMac to properly filter the construct command special characters, commands, etc. An attacker could use this vulnerability to cause...

10CVSS5.5AI score0.02654EPSS
Exploits1References1
NVD
NVD
added 2022/03/24 12:15 a.m.31 views

CVE-2022-26290

Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/WriteFacMac...

10CVSS0.02654EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/03/24 12:15 a.m.2 views

CVE-2022-26290

Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/WriteFacMac...

10CVSS5.9AI score0.02654EPSS
Exploits1References2
Prion
Prion
added 2022/03/24 12:15 a.m.20 views

Command injection

Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/WriteFacMac...

10CVSS9.8AI score0.02654EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/23 11:24 p.m.30 views

CVE-2022-26290

Tenda M3 1.10 V1.0.0.124856 was discovered to contain a command injection vulnerability via the component /goform/WriteFacMac...

10AI score0.02654EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/03/23 12:0 a.m.8 views

Tenda M3 操作系统命令注入漏洞

Tenda M3 is an access control from Tenda, a Chinese company. Tenda M3 is vulnerable to command injection, which stems from the failure of the component /goform/WriteFacMac to properly filter the construct command special characters, commands, etc. An attacker could use this vulnerability to cause...

10CVSS5.9AI score0.02654EPSS
Exploits1References3
Rows per page
Query Builder