| Title | Tenda CP3 camera V11.10.00.2311090948 Command Injection |
|---|
| Description | The lack of character escaping in the Tenda CP3 camera firmware allows you to execute arbitrary commands with root privileges through changing the Wi-Fi SSID. |
|---|
| Source | ⚠️ https://blog.kevgen.ru/posts/rce_in_tenda_cp3_camera and https://github.com/k3vg3n/researches/blob/main/RCE_in_Tenda_CP3_camera.md |
|---|
| User | k3vg3n (UID 86142) |
|---|
| Submission | 06/05/2025 16:12 (1 Year ago) |
|---|
| Moderation | 06/06/2025 00:03 (8 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 311305 [Tenda CP3 11.10.00.2311090948 apollo sub_F3C8C command injection] |
|---|
| Points | 15 |
|---|