CVE-2022-36273

Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg.
References
Link Resource
https://github.com/F0und-icu/CVEIDs/tree/main/TendaAC9 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tenda:ac9_firmware:15.03.2.21_cn:*:*:*:*:*:*:*
cpe:2.3:h:tenda:ac9:-:*:*:*:*:*:*:*

Information

Published : 2022-08-16 06:15

Updated : 2022-08-17 08:56


NVD link : CVE-2022-36273

Mitre link : CVE-2022-36273


JSON object : View

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Advertisement

dedicated server usa

Products Affected

tenda

  • ac9_firmware
  • ac9