1 results (0.002 seconds)
CVSS: 9.8EPSS: 1%CPEs: 24EXPL: 1
CVSS: 9.8EPSS: 1%CPEs: 24EXPL: 1CVE-2024-9793 – Tenda AC1206 ate ate_ifconfig_set command injection
https://notcve.org/view.php?id=CVE-2024-9793
10 Oct 2024 — A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This vulnerability affects the function ate_iwpriv_set/ate_ifconfig_set of the file /goform/ate. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/ixout/iotVuls/blob/main/Tenda/ac1206_003/report.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •