CVE-2025-1819 | Tenda AC7 1200M 15.03.06.44 /goform/telnet TendaTelnet lan_ip os command injection

Inserito da Angelo Barbosa | Mar 1, 2025 | CVE

A vulnerability, which was classified as critical, was found in Tenda AC7 1200M 15.03.06.44. Affected is the function TendaTelnet of the file /goform/telnet. The manipulation of the argument lan_ip leads to os command injection.

This vulnerability is traded as CVE-2025-1819. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-1819 | Tenda AC7 1200M 15.03.06.44 /goform/telnet TendaTelnet lan_ip os command injection

Post correlati

CVE-2024-22359 | IBM UrbanCode Deploy/DevOps Deploy Web UI cross site scripting (XFDB-280897)

CVE-2024-12789 | PbootCMS up to 3.2.3 IndexController.php tag code injection

CVE-2024-12486 | code-projects Online Class and Exam Scheduling System 1.0 /pages/rank_update.php id sql injection

CVE-2024-43652 | Iocharger prior 24120701 os command injection (DIVD-2024-00035)