VYPR

G300-F

by Tenda

CVEs (1)

  • CVE-2026-25857Feb 7, 2026
    risk 0.00cvss epss 0.03

    Tenda G300-F router firmware version 16.01.14.2 and prior contain an OS command injection vulnerability in the WAN diagnostic functionality (formSetWanDiag). The implementation constructs a shell command that invokes curl and incorporates attacker-controlled input into the…