exploitDog

GHSA-gvmc-5p79-xx55

Опубликовано: 05 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution.

A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution.

Ссылки

EPSS

Процентиль: 58%

0.00362

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2024-30891

CVSS3: 8.8

nvd

почти 2 года назад

A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution.

EPSS

Процентиль: 58%

0.00362

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-77