VYPR
Unrated severityNVD Advisory· Published Jan 21, 2026· Updated Jan 22, 2026

Tenda D151 & D301 - Configuration Download

CVE-2021-47802

Description

Tenda D151 and D301 routers contain an unauthenticated configuration download vulnerability that allows remote attackers to retrieve router configuration files. Attackers can send a request to /goform/getimage endpoint to download configuration data including admin credentials without authentication.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Tenda/D151llm-create
  • Tenda/D301llm-create
  • Shenzhen Tenda Technology Co.,Ltd./Tenda D151 & D301v5
    Range: -

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.

CVE-2021-47802 · VYPR