CVE-2026-8259 | Tenda AC6 2.0/15.03.06.23 httpd /goform/telnet lan.ip os command injection

Inserito da Angelo Barbosa | Mag 10, 2026 | CVE

A vulnerability marked as critical has been reported in Tenda AC6 2.0/15.03.06.23. The affected element is an unknown function of the file /goform/telnet of the component httpd. The manipulation of the argument lan.ip leads to os command injection.

This vulnerability is referenced as CVE-2026-8259. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-8259 | Tenda AC6 2.0/15.03.06.23 httpd /goform/telnet lan.ip os command injection

Post correlati

CVE-2024-12347 | Guangzhou Huayi Intelligent Technology Jeewms up to 1.0.0 Druid Monitoring Interface index.html improper authorization

CVE-2025-13537 | Live Composer Plugin up to 2.0.2 on WordPress cross site scripting

CVE-2025-59820 | Krita TGA File Parser heap-based overflow

CVE-2025-12316 | code-projects Courier Management System 1.0 edit-courier.php OfficeName sql injection