VYPR
High severity8.0NVD Advisory· Published May 21, 2017· Updated Jun 17, 2026

CVE-2017-9138

CVE-2017-9138

Description

There is a debug-interface vulnerability on some Tenda routers (FH1202/F1202/F1200: versions before 1.2.0.20). After connecting locally to a router in a wired or wireless manner, one can bypass intended access restrictions by sending shell commands directly and reading their results, or by entering shell commands that change this router's username and password.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:o:tendacn:f1200_firmware:*:*:*:*:*:*:*:*
    Range: <=1.2.0.19
  • cpe:2.3:o:tendacn:f1202_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:tendacn:f1202_firmware:*:*:*:*:*:*:*:*range: <=1.2.0.19
    • cpe:2.3:o:tendacn:fh1202_firmware:*:*:*:*:*:*:*:*range: <=1.2.0.19

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.