CVE-2023-51100
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 26, 2023
Updated: Dec 30, 2023
CWE ID 78
Summary
CVE-2023-51100 is a recently disclosed vulnerability affecting the Tenda W9 V1.0.0.7(4456)_CN router. This issue arises from a command injection vulnerability situated within the function formGetDiagnoseInfo. An attacker can exploit this flaw by injecting malicious commands, potentially leading to unauthorized access, system manipulation, or data theft. The vulnerability poses a significant risk and requires users to update their routers with the latest security patches as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Shenzhen Tenda Technology Co. Ltd