Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/31 3:19 a.m.9 views

CVE-2026-1638

A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to...

8.8CVSS5.7AI score0.02027EPSS
Exploits0References1
NVD
NVD
added 2026/01/30 12:15 a.m.7 views

CVE-2026-1638

A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to...

8.8CVSS0.02027EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/29 11:32 p.m.36 views

CVE-2026-1638 Tenda AC21 mDMZSetCfg command injection

A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to...

6.5CVSS0.02027EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/01/29 11:32 p.m.7 views

CVE-2026-1638

A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to...

6.5CVSS5.7AI score0.02027EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/01/29 11:32 p.m.16 views

CVE-2026-1638

The vulnerability CVE-2026-1638 affects Tenda AC21 devices (firmware versions 1.1.1.1/1.dmzip/16.03.08.16) via the function /goform/mDMZSetCfg, where manipulating the dmzIp argument triggers a command injection. The issue is exploitable remotely and exploitation has been publicly released, enabli...

8.8CVSS5.7AI score0.02027EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/01/29 11:32 p.m.5 views

EUVD-2026-5015

A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to...

6.5CVSS5.7AI score0.02027EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.7 views

PT-2026-5372

A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to...

6.5CVSS5.7AI score0.02027EPSS
Exploits0References6
NVD
NVD
added 2022/02/04 2:15 a.m.17 views

CVE-2022-24148

Tenda AX3 v16.03.12.10CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter...

9.8CVSS0.02724EPSS
Exploits1References1
OSV
OSV
added 2022/02/04 2:15 a.m.3 views

CVE-2022-24148

Tenda AX3 v16.03.12.10CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter...

9.8CVSS6.1AI score0.02724EPSS
Exploits1References1
Prion
Prion
added 2022/02/04 2:15 a.m.19 views

Command injection

Tenda AX3 v16.03.12.10CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter...

7.5CVSS9.9AI score0.02724EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder