4 matches found
CVE-2026-38142
An unauthenticated command injection vulnerability in the /goform/fastsettinginternetset endpoint of Tenda AC18 v15.03.05.05 allows attackers to execute arbitrary commands via a crafted payload injected into the mac parameter...
PT-2023-31034 · Tneda · Tenda Ax1803
Name of the Vulnerable Software and Affected Versions: Tneda AX1803 version 1.0.0.1 Description: The issue allows a remote attacker to execute arbitrary code via the adslPwd parameter in the form fast setting internet set function. Recommendations: For Tneda AX1803 version 1.0.0.1, consider...
CVE-2022-45043
Tenda AX12 V22.03.01.16cn is vulnerable to command injection via goform/fastsettinginternetset...
CVE-2022-45043
Tenda AX12 V22.03.01.16cn is vulnerable to command injection via goform/fastsettinginternetset...