Unrated severityCISA KEVNVD Advisory· Published Jul 13, 2020· Updated Oct 21, 2025
CVE-2020-10987
CVE-2020-10987
Description
The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute arbitrary system commands via the deviceName POST parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Tenda/AC15 AC1900description
Patches
Vulnerability mechanics
References
2- blog.securityevaluators.com/tenda-ac1900-vulnerabilities-discovered-and-exploited-e8e26aa0bc68mitrex_refsource_MISC
- www.ise.io/research/mitrex_refsource_MISC
News mentions
1- RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning ExploitsTrend Micro Research · Oct 9, 2025