Tenda AC18 router V15.03.05.19 and V15.03.05.05 was discovered to contain a remote code execution (RCE) vulnerability via the Mac parameter at ip/goform/WriteFacMac.
References
Link | Resource |
---|---|
https://github.com/wshidamowang/Router/blob/main/Tenda/AC18/RCE_1.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2022-06-13 20:15
Updated : 2022-06-17 20:18
NVD link : CVE-2022-31446
Mitre link : CVE-2022-31446
JSON object : View
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Products Affected
tendacn
- ac18
- ac18_firmware