CVE-2023-51100 | Tenda W9 1.0.0.7(4456)_CN formGetDiagnoseInfo command injection

Posted by Angelo Barbosa | Dec 26, 2023 | CVE

A vulnerability, which was classified as critical, was found in Tenda W9 1.0.0.7(4456)_CN. Affected is the function formGetDiagnoseInfo. The manipulation leads to command injection.

This vulnerability is traded as CVE-2023-51100. The attack needs to be approached within the local network. There is no exploit available.

CVE-2023-51100 | Tenda W9 1.0.0.7(4456)_CN formGetDiagnoseInfo command injection

Related Posts

CVE-2024-26651 | Linux Kernel up to 6.8.1 sr9800 usbnet_get_endpoints Privilege Escalation

CVE-2024-48202 | IceCMS up to 3.4.7 FileUtils.java unrestricted upload

CVE-2023-49539 | Book Store Management System 1.0 category cross site scripting

CVE-2024-38304 | Dell PowerEdge Platform up to 2.22.0 14G Intel BIOS access of memory location after end of buffer (dsa-2024-310)