Unrated severityNVD Advisory· Published Feb 4, 2022· Updated Aug 3, 2024
CVE-2022-24171
CVE-2022-24171
Description
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer. This vulnerability allows attackers to execute arbitrary commands via the pppoeServerIP, pppoeServerStartIP, and pppoeServerEndIP parameters.
Affected products
3- Tenda/G1 and G3description
- Range: =15.11.0.17(9502)_CN
Patches
Vulnerability mechanics
References
1- github.com/pjqwudi/my_vuln/blob/main/Tenda/vuln_35/35.mdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.