CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

NVD•added 2024/07/25 10:15 p.m.•13 views

CVE-2024-41473

Tenda FH1201 v1.2.0.14 was discovered to contain a command injection vulnerability via the mac parameter at ip/goform/WriteFacMac...

9.8CVSS0.86302EPSS

Exploits1References1

CVE•added 2024/07/25 12:0 a.m.•48 views

CVE-2024-41473

The advisory covers CVE-2024-41473 affecting Tenda FH1201 v1.2.0.14, where a command injection vulnerability exists in the mac parameter of ip/goform/WriteFacMac. The vulnerability targets the management interface and could allow an attacker to execute arbitrary commands. Reported impact is high/...

9.8CVSS7.7AI score0.86302EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2024/07/25 12:0 a.m.•2 views

PT-2024-5258 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14 Description: The issue is related to a command injection vulnerability. It is associated with the lack of data sanitization at the management level, specifically via the mac parameter at the "ip/goform/WriteFacMa...

9.8CVSS7.8AI score0.86302EPSS

Exploits1References6

CVE•added 2024/05/24 2:49 p.m.•71 views

CVE-2024-35339

The CVE-2024-35339 entry concerns Tenda FH1206, affected version 1.2.0.8(8155), with a command injection vulnerability exposed via the mac parameter at ip/goform/WriteFacMac. The issue is described as allowing remote command execution and is supported by multiple sources. The CVSSv3.1 vector indi...

9.8CVSS7.9AI score0.03404EPSS

Exploits1References1Affected Software1

CNVD•added 2023/05/18 12:0 a.m.•48 views

Tenda AC5 Code Execution Vulnerability

Tenda AC5 is a wireless router from Tenda, a Chinese company. A code execution vulnerability exists in Tenda AC5 version V15.03.06.28, which stems from the Mac parameter of ip/goform/WriteFacMac failing to correctly filter special elements of the constructed snippet. An attacker can exploit this...

9.8CVSS7.8AI score0.03107EPSS

Exploits1References1

NVD•added 2023/05/16 3:15 p.m.•14 views

CVE-2023-31587

Tenda AC5 router V15.03.06.28 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

9.8CVSS9.9AI score0.03107EPSS

Exploits1References3

Cvelist•added 2023/05/16 12:0 a.m.•16 views

CVE-2023-31587

Tenda AC5 router V15.03.06.28 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10AI score0.03107EPSS

Exploits1References3

CVE•added 2023/05/16 12:0 a.m.•73 views

CVE-2023-31587

CVE-2023-31587 affects Tenda AC5 router V15.03.06.28. A remote code execution (RCE) vulnerability exists via the Mac parameter at ip/goform/WriteFacMac, arising from insufficient input validation on the Mac field. Documented impact is arbitrary code execution with network access. Several sources ...

9.8CVSS9.9AI score0.03107EPSS

Exploits1References3Affected Software1

ATTACKERKB•added 2022/06/14 3:15 a.m.•634 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10CVSS8AI score0.17698EPSS

In wildExploits1References2

NVD•added 2022/06/14 3:15 a.m.•6 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10CVSS0.17698EPSS

Exploits1References1

Cvelist•added 2022/06/14 2:41 a.m.•14 views

CVE-2022-31446

Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution RCE vulnerability via the Mac parameter at ip/goform/WriteFacMac...

10AI score0.17698EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by