CVE-2024-35340

Tenda FH1206 V1.2.0.88155 was discovered to contain a command injection vulnerability via the cmdinput parameter at ip/goform/formexeCommand...

CVE-2024-35340

CVE-2024-35340 affects Tenda FH1206 (version 1.2.0.8(8155)). The vulnerability is a command injection via the cmdinput parameter at ip/goform/formexeCommand, with CVSSv3.1 base score 8.6 (High) and impact on confidentiality (H) and integrity/availability (L). Connected advisories indicate exploit...

PT-2024-26441 · Tenda · Tenda Fh1206

Name of the Vulnerable Software and Affected Versions: Tenda FH1206 version 1.2.0.88155 Description: A command injection issue was found, which can be exploited via the cmdinput parameter at the "ip/goform/formexeCommand" endpoint. Recommendations: For Tenda FH1206 version 1.2.0.88155, avoid usin...

Tenda FH1206 安全漏洞

The Tenda FH1206 is a wireless router from Tenda China. The Tenda FH1206 version 1.2.0.88155 suffers from a command execution vulnerability, which stems from the cmdinput parameter of ip/goform/formexeCommand failing to correctly filter constructed command special characters, commands, etc., whic...

CVE-2024-35340

Tenda FH1206 V1.2.0.88155 was discovered to contain a command injection vulnerability via the cmdinput parameter at ip/goform/formexeCommand...