CVE-2023-51100 | Tenda W9 1.0.0.7(4456)_CN formGetDiagnoseInfo command injection

Inserito da Angelo Barbosa | Dic 26, 2023 | CVE

A vulnerability, which was classified as critical, was found in Tenda W9 1.0.0.7(4456)_CN. Affected is the function formGetDiagnoseInfo. The manipulation leads to command injection.

This vulnerability is traded as CVE-2023-51100. The attack needs to be approached within the local network. There is no exploit available.

CVE-2023-51100 | Tenda W9 1.0.0.7(4456)_CN formGetDiagnoseInfo command injection

Post correlati

CVE-2024-3850 | Uniview NVR301-04S2-P4 prior NVR-B3801.20.17.240507 cross site scripting (icsa-24-156-01)

CVE-2023-28185 | Apple watchOS App integer overflow

CVE-2024-3645 | Essential Addons for Elementor Pro Plugin up to 5.8.11 on WordPress title_html_tag cross site scripting

CVE-2024-1300 | Vert.x up to 4.5.2 SNI memory leak