Описание
An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted network request can lead to arbitrary code execution. An attacker can browse to the device to trigger this vulnerability.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tenda:ac6_firmware:02.03.01.110:*:*:*:*:*:*:*
cpe:2.3:h:tenda:ac6:5.0:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00066
Низкий
8.1 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-304
Связанные уязвимости
CVSS3: 8.1
github
6 месяцев назад
An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted network request can lead to arbitrary code execution. An attacker can browse to the device to trigger this vulnerability.
EPSS
Процентиль: 20%
0.00066
Низкий
8.1 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-304