3 matches found
The vulnerability of the formSetSambaConf() function (/goform/setsambacfg) in the Tenda AC18 router microprogramming software allows a attacker to execute arbitrary commands.
The vulnerability of the formSetSambaConf function /goform/setsambacfg of the Tenda AC18 router microprogramming system is related to the failure to take measures to neutralize special elements used in the OS command when processing the parameter usbName. Exploiting this vulnerability allows a...
CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...
CVE-2024-2851 Tenda AC15 setsambacfg formSetSambaConf os command injection
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20multi. It has been classified as critical. This affects the function formSetSambaConf of the file /goform/setsambacfg. The manipulation of the argument usbName leads to os command injection. It is possible to initiate the attack remotely...