CVE-2026-8265 in AC6info

Zusammenfassung

von MITRE • 11.05.2026

A security vulnerability has been detected in Tenda AC6 15.03.06.23. Affected by this issue is the function get_log_file of the file /goform/getLogFile of the component httpd. The manipulation of the argument wans.flag leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

11.05.2026

Moderieren

akzeptiert

Eintrag

VDB-362562

CPE

bereit

CWE

CWE-78 (bestätigt)

Exploit

Download

CVSS

4.7 (VulDB)

EPSS

0.00370

KEV

nein

Aktivitäten

very low

Sektor

Industry, Finance, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-8265
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-8265
CVE Details	https://www.cvedetails.com/cve/CVE-2026-8265/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!