Описание
Tenda W20E V15.11.0.6 was found to contain a command injection vulnerability in the formSetDebugCfg function via the level parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tenda:w20e_firmware:15.11.0.6:*:*:*:*:*:*:*
cpe:2.3:h:tenda:w20e:-:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.07359
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 6.3
github
8 месяцев назад
Tenda W20E V15.11.0.6 was found to contain a command injection vulnerability in the formSetDebugCfg function via the level parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
EPSS
Процентиль: 91%
0.07359
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-77