14 matches found
CVE-2026-31255
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
CVE-2026-31255
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
CVE-2026-31255
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
CVE-2026-31255
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
CVE-2026-31255
Summary: CVE-2026-31255 concerns a command-injection vulnerability in the Tenda AC18 router. The flaw is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows an attacker to execute arbitrary system commands. The affected product/version is Tenda ...
CVE-2026-31255
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
EUVD-2026-25898
A command injection vulnerability exists in Tenda AC18 V15.03.05.05multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
Tenda AC18 安全漏洞
The Tenda AC18 is a router produced by the Chinese company Tenda. The Tenda AC18 V15.03.05.05multi version has a security vulnerability. This vulnerability stems from the improper handling of the guestuser parameter in the /goform/SetSambaCfg interface, which may lead to command injection...
PT-2026-35506
A command injection vulnerability exists in Tenda AC18 V15.03.05.05 multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows attackers to execute arbitrary system commands...
EUVD-2020-19266
Malware in sbrugna...
Tenda AC9 has an unspecified vulnerability
Tenda AC9, a wireless router from Tenda China, is vulnerable to a security flaw in Tenda AC9 v3.0 that allows remote execution of code via shell metacharacters in the guestuser field to a fastcall function request with POST. No details of the vulnerability are currently available...
CVE-2020-26728
A vulnerability was discovered in Tenda AC9 v3.0 V15.03.06.42multi and Tenda AC9 V1.0 V15.03.05.196318CN which allows for remote code execution via shell metacharacters in the guestuser field to the fastcall function with a POST request...
CVE-2020-26728
The CVE-2020-26728 entry corresponds to a remote code execution in Tenda AC9 devices (v3.0 V15.03.06.42_multi and v1.0 V15.03.05.19(6318)_CN). The underlying issue is shell metacharacters in the guestuser field used by the __fastcall function via a POST request, enabling an attacker to execute ar...
Tenda AC9 安全漏洞
Tenda AC9, a wireless router from Tenda China, is vulnerable to a security flaw in Tenda AC9 v3.0 that allows remote execution of code via shell metacharacters in the guestuser field to a fastcall function request with POST. No details of the vulnerability are currently available...