5 matches found
CVE-2022-24165
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a command injection vulnerability in the function formSetQvlanList. This vulnerability allows attackers to execute arbitrary commands via the qvlanIP parameter...
CVE-2022-24165
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a command injection vulnerability in the function formSetQvlanList. This vulnerability allows attackers to execute arbitrary commands via the qvlanIP parameter...
CVE-2021-45992
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a stack overflow in the function formSetQvlanList. This vulnerability allows attackers to cause a Denial of Service DoS via the qvlanName parameter...
Command injection
Tenda routers G1 and G3 v15.11.0.179502CN were discovered to contain a command injection vulnerability in the function formSetQvlanList. This vulnerability allows attackers to execute arbitrary commands via the qvlanIP parameter...
CVE-2022-24165
CVE-2022-24165 is linked to Tenda G1/G3 routers (firmware v15.11.0.17(9502)_CN). Multiple connected sources confirm a command injection vulnerability in function formSetQvlanList, exploitable via qvlanIP to execute arbitrary commands. Reported CVSS details indicate high/critical impact (CVSS 3.1:...