CVE-2025-44865 | Tenda W20E 15.11.0.6 formSetDebugCfg enable command injection

Inserito da Angelo Barbosa | Mag 1, 2025 | CVE

A vulnerability was found in Tenda W20E 15.11.0.6. It has been declared as critical. This vulnerability affects the function formSetDebugCfg. The manipulation of the argument enable leads to command injection.

This vulnerability was named CVE-2025-44865. The attack can be initiated remotely. There is no exploit available.

CVE-2025-44865 | Tenda W20E 15.11.0.6 formSetDebugCfg enable command injection

Post correlati

CVE-2024-31493 | Fortinet FortiSOAR up to 7.0.3/7.2.2/7.3.0 HTTP Response unknown vulnerability (FG-IR-24-052)

CVE-2024-53507 | Siyuan 3.1.11 /getHistoryItems sql injection (Issue 13057)

CVE-2024-54846 | CP Plus CP-VNR-3104 B3223P22C02424 EC Private Key channel accessible

HPE ArubaOS CLI Service denial of service (ARUBA-PSA-2023-017)