CVE-2024-2816

A vulnerability classified as problematic was found in Tenda AC15 15.03.05.18. Affected by this vulnerability is the function fromSysToolReboot of the file /goform/SysToolReboot. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been...

PT-2024-2380 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.03.05.18 Description: The issue is related to insufficient authentication of requests executed by the fromSysToolReboot function, accessible through the "/goform/SysToolReboot" endpoint. This can be exploited by a remote...

CVE-2022-45498

An issue in the component tpisystoolhandle0 /goform/SysToolReboot of Tenda W6-S v1.0.0.4510 allows unauthenticated attackers to arbitrarily reboot the device...

CVE-2022-45668

Tenda i22 V1.0.0.34687 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...

CVE-2022-42087

Tenda AX1803 USAX1803v2.0brv1.0.0.12994CNZGYD014 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolReboot...

Tenda AX1803 跨站请求伪造漏洞

Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda China. A cross-site request forgery vulnerability exists in the Tenda AX1803 firmware, version USAX1803v2.0brv1.0.0.12994CNZGYD014, which exists in the /bin/tdhttpd file fromSysToolReboot function/goform/SysToolReboot page. An attacker...

CVE-2022-27374

Tenda AX12 V22.03.01.21CN was discovered to contain a Cross-Site Request Forgery CSRF via the function sub42E328 at /goform/SysToolReboot...

CVE-2022-27374

Tenda AX12 V22.03.01.21CN was discovered to contain a Cross-Site Request Forgery CSRF via the function sub42E328 at /goform/SysToolReboot...