CVE-2022-27083
CVE-2022-27083 affects Tenda M3, version 1.10 V1.0.0.12(4856), with a command injection vulnerability in the /cgi-bin/uploadAccessCodePic component. The root cause is improper filtering of command characters in that endpoint, allowing arbitrary command execution. CVSS metrics indicate a network-a...