3 matches found
CVE-2022-28557
There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 USAC15V1.0BRV15.03.05.20multiTDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command execution...
Tenda AC15 Command Injection (CVE-2022-28557)
A command injection vulnerability exists in Tenda AC15. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2022-28557
Affected product : Tenda AC15 (US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin) web interface. Vulnerability : command injection at the /goform/setsambacfg interface. Root cause / nature : vulnerability enables unconditional arbitrary command execution and can cooperate with CVE-2021-44971 to achieve ...