VYPR
Unrated severityNVD Advisory· Published Aug 16, 2024· Updated Aug 16, 2024

CVE-2024-42634

CVE-2024-42634

Description

A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda AC9 v15.03.06.42. As a result, attacker can execute OS commands with root privileges.

Affected products

2
  • Tenda/AC9cpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 15.03.06.42

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.