| Title | Tenda AC18 V15.03.05.05 command injection |
|---|
| Description | In Tenda AC18 V15.03.05.05 firmware, we discovered a command injection vulnerablility in the usbName parameter in formSetSambaConf function. |
|---|
| Source | ⚠️ https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC18/formSetSambaConf.md |
|---|
| User | wxhwxhwxh_miemie (UID 65922) |
|---|
| Submission | 03/16/2024 12:00 (2 years ago) |
|---|
| Moderation | 03/23/2024 06:47 (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 257778 [Tenda AC18 15.03.05.05 /goform/setsambacfg formSetSambaConf usbName os command injection] |
|---|
| Points | 15 |
|---|