Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the formSetSambaConf function via the usbname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
The vulnerability results from insufficient validation and sanitization of input data passed through the usbname parameter to the formSetSambaConf function. By sending a crafted network request containing a malicious payload, an attacker can inject and execute arbitrary system commands at the device level. The attack vector is network-based, requires no authentication or user interaction, making this vulnerability particularly dangerous.
An attacker can gain full control of the device by remotely executing arbitrary system commands, which may lead to violations of the device's and connected network's confidentiality, integrity, and availability.
Apply patches available from the manufacturer according to the references. As a temporary measure, it is recommended to restrict access to the device management interface only to trusted IP addresses and isolate the device from the public Internet.
Tenda AC9 with firmware version V15.03.06.42_multi
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTenda Ac9
HWTendawszystkie wersjeTenda Ac9 Firmware
OSTenda15.03.06.42_multi
Related vulnerabilities
An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firm...
Command injection w funkcji Telnet routera Tenda AC9
Command injection w Tenda AC9 via parametr deviceName
Tenda AC9 – stack overflow w WifiBasicSet umożliwia zdalny RCE
Stack overflow w Tenda AC9 – RCE przez parametr rebootTime