CVE-2024-10697 | Tenda AC6 15.03.05.19 API Endpoint /goform/WriteFacMac formWriteFacMac The command injection

Posted by Angelo Barbosa | Nov 1, 2024 | CVE

A vulnerability has been found in Tenda AC6 15.03.05.19 and classified as critical. Affected by this vulnerability is the function formWriteFacMac of the file /goform/WriteFacMac of the component API Endpoint. The manipulation of the argument The leads to command injection.

This vulnerability is known as CVE-2024-10697. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-10697 | Tenda AC6 15.03.05.19 API Endpoint /goform/WriteFacMac formWriteFacMac The command injection

Related Posts

CVE-2024-34003 | moodle mod_workshop file inclusion

CVE-2024-44410 | D-Link DI-8300 16.07.26A1 upgrade_filter_asp command injection

CVE-2024-1749 | Bdtask Bhojon Best Restaurant Management Software 2.9 Message Page /dashboard/message Title cross site scripting

CVE-2024-6949 | Gargaj wuhu up to 3faad49bfcc3895e9ff76a591d05c8941273d120 /pages.php path traversal