3 matches found
CVE-2023-49428
creationtimestamp| type| source ---|---|--- 2023-12-30 18:07:01+00:00| seen| https://t.me/ctinow/160936...
CVE-2023-49428
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName...
CVE-2023-49428
CVE-2023-49428 involves a command-injection vulnerability in the Tenda AX12 router (V22.03.01.46) via the mac parameter in the /goform/SetOnlineDevName endpoint. The root cause is insufficient input validation for the mac parameter, enabling arbitrary command execution. The vulnerability is descr...