CVE-2021-45986
- EPSS 2.08%
- Veröffentlicht 04.02.2022 02:15:08
- Zuletzt bearbeitet 21.11.2024 06:33:25
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetUSBShareInfo. This vulnerability allows attackers to execute arbitrary commands via the usbOrdinaryUserName parameter.
- EPSS 4.4%
- Veröffentlicht 16.04.2021 00:15:12
- Zuletzt bearbeitet 21.11.2024 05:58:25
Command Injection in Tenda G0 routers with firmware versions v15.11.0.6(9039)_CN and v15.11.0.5(5876)_CN , and Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS...
- EPSS 3.25%
- Veröffentlicht 16.04.2021 00:15:12
- Zuletzt bearbeitet 21.11.2024 05:58:26
Command Injection in Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS commands via a crafted "action/umountUSBPartition" request. This occurs because the "form...