exploitDog

GHSA-wwhc-m2jv-2rv2

Опубликовано: 15 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), there exists a command injection vulnerability in the function formSetFixTools. This vulnerability allows attackers to run arbitrary commands on the server via the hostname parameter.

In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), there exists a command injection vulnerability in the function formSetFixTools. This vulnerability allows attackers to run arbitrary commands on the server via the hostname parameter.

Ссылки

EPSS

Процентиль: 80%

0.0136

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2022-40847

CVSS3: 7.8

nvd

около 3 лет назад

In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), there exists a command injection vulnerability in the function formSetFixTools. This vulnerability allows attackers to run arbitrary commands on the server via the hostname parameter.

EPSS

Процентиль: 80%

0.0136

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-78