exploitDog

GHSA-ph9v-qvxr-mh9x

Опубликовано: 20 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 37%

0.00158

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-288

Связанные уязвимости

CVE-2025-27129

CVSS3: 9.8

nvd

6 месяцев назад

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.

EPSS

Процентиль: 37%

0.00158

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-288