2 matches found
CVE-2022-24144
CVE-2022-24144 affects Tenda AX3 routers with firmware v16.03.12.10_CN. A command-injection flaw in WanParameterSetting lets an attacker execute arbitrary commands via gateway, dns1, and dns2 parameters over the network. Severity is high (CVSS v3.1: 9.8, network attack vector, no authentication, ...
CVE-2022-24144
Tenda AX3 v16.03.12.10CN was discovered to contain a command injection vulnerability in the function WanParameterSetting. This vulnerability allows attackers to execute arbitrary commands via the gateway, dns1, and dns2 parameters...