CVE-2023-51098 | Tenda W9 1.0.0.7(4456)_CN formSetDiagnoseInfo command injection

Posted by Angelo Barbosa | Dec 26, 2023 | CVE

A vulnerability classified as critical has been found in Tenda W9 1.0.0.7(4456)_CN. This affects the function formSetDiagnoseInfo. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2023-51098. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2023-51098 | Tenda W9 1.0.0.7(4456)_CN formSetDiagnoseInfo command injection

Related Posts

CVE-2024-23673 | Apache Sling Servlets Resolver up to 2.10.x Script path traversal (SLING-12233)

CVE-2023-6833 | Hitachi Ops Center Administrator up to 11.0.0 log file (sec-2024-121)

CVE-2024-33583 | Siemens SIMATIC RTLS Locating Manager up to 3.0.1.0 Configuration backdoor (ssa-093430)

CVE-2024-21182 | Oracle WebLogic Server 12.2.1.4.0/14.1.1.0.0 Core information disclosure