CVE-2026-11556 | Tenda F451 1.0.0.7/1.0.0.9 Web Management Interface /goform/WriteFacMac formWriteFacMac mac os command injection

Inserito da Angelo Barbosa | Giu 8, 2026 | CVE

A vulnerability classified as critical has been found in Tenda F451 1.0.0.7/1.0.0.9. Impacted is the function formWriteFacMac of the file /goform/WriteFacMac of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection.

This vulnerability is known as CVE-2026-11556. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-11556 | Tenda F451 1.0.0.7/1.0.0.9 Web Management Interface /goform/WriteFacMac formWriteFacMac mac os command injection

Post correlati

CVE-2025-61152 | python-jose up to 3.3.0 JWT Token signature verification

CVE-2025-10632 | itsourcecode Online Petshop Management System 1.0 Admin Dashboard availableframe.php name/address cross site scripting

CVE-2026-0708 | libucl UCL denial of service

CVE-2026-43019 | Linux Kernel up to 6.12.80/6.18.21/6.19.11 Bluetooth set_cig_params_sync use after free