exploitDog

GHSA-3q82-gprf-75fq

Опубликовано: 08 фев. 2022

Источник: github

Github: Не прошло ревью

Описание

Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter.

Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter.

Ссылки

EPSS

Процентиль: 92%

0.09137

Низкий

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2022-24148

CVSS3: 9.8

nvd

около 4 лет назад

Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter.

EPSS

Процентиль: 92%

0.09137

Низкий

CVE ID

Дефекты

CWE-77