提交 #798475: Tenda F456 v1.0.0.5 Command Injection
| 标题 | Tenda F456 v1.0.0.5 Command Injection |
|---|---|
| 描述 | A vulnerability was found in Tenda F456 v1.0.0.5. Affected by this vulnerability is the function FromWriteFacMac of the file /goform/WriteFacMac of the component httpd. The manipulation of the argument mac with an unknown input leads to a command injection vulnerability.As a result, by requesting the page, an attacker can easily execute a denial of service attack or remote code execution. |
| 来源 | ⚠️ https:/ |
| 用户 | LtzHuster (UID 95786) |
| 提交 | 2026-04-07 02時18分 (20 日前) |
| 管理 | 2026-04-26 11時00分 (19 days later) |
| 状态 | 已接受 |
| VulDB条目 | 359677 [Tenda F456 1.0.0.5 httpd /goform/WriteFacMac FromWriteFacMac mac 权限提升] |
| 积分 | 20 |