Medium severity4.7NVD Advisory· Published Apr 2, 2026· Updated Apr 29, 2026
CVE-2026-5338
CVE-2026-5338
Description
A security vulnerability has been detected in Tenda G103 1.0.0.5. The affected element is the function action_set_system_settings of the file system.lua of the component Setting Handler. Such manipulation of the argument lanIp leads to command injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:o:tenda:g103_firmware:1.0.0.5:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- github.com/ZZ2266/.github.io/tree/main/Tenda%20G103/action_set_system_settingsnvdExploitThird Party Advisory
- vuldb.com/submit/781131nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/354669nvdThird Party AdvisoryVDB Entry
- vuldb.com/vuln/354669/ctinvdPermissions RequiredVDB Entry
- www.tenda.com.cnnvdProduct
News mentions
0No linked articles in our index yet.