2 matches found
CVE-2023-49436
Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList...
CVE-2023-49436
CVE-2023-49436 affects Tenda AX9 with firmware version V22.03.01.46. The vulnerability is a command injection in the 'list' parameter of the API endpoint /goform/SetNetControlList . Multiple sources corroborate a critical impact (CVSS v3.1 base score 9.8; AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Doc...