CVE-2025-44867 | Tenda W20E 15.11.0.6 formSetNetCheckTools Hostname command injection

Inserito da Angelo Barbosa | Mag 1, 2025 | CVE

A vulnerability classified as critical has been found in Tenda W20E 15.11.0.6. Affected is the function formSetNetCheckTools. The manipulation of the argument Hostname leads to command injection.

This vulnerability is traded as CVE-2025-44867. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-44867 | Tenda W20E 15.11.0.6 formSetNetCheckTools Hostname command injection

Post correlati

CVE-2025-1374 | code-projects Real Estate Property Management System 1.0 /search.php StateName/CityName/AreaName/CatId sql injection

CVE-2024-1567 | Royal Elementor Addons and Templates Plugin up to 1.3.94 on WordPress unrestricted upload

CVE-2024-43280 | Salon Booking System Plugin up to 10.8.1 on WordPress URL redirect

CVE-2024-10039 | Keycloak mTLS improper authentication