CVE-2023-51100

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 26, 2023

Updated: Dec 30, 2023

CWE ID 78

Summary

CVE-2023-51100 is a recently disclosed vulnerability affecting the Tenda W9 V1.0.0.7(4456)_CN router. This issue arises from a command injection vulnerability situated within the function formGetDiagnoseInfo. An attacker can exploit this flaw by injecting malicious commands, potentially leading to unauthorized access, system manipulation, or data theft. The vulnerability poses a significant risk and requires users to update their routers with the latest security patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Shenzhen Tenda Technology Co. Ltd

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t1xj5d
https://www.cve.org/CVERecord?id=CVE-2023-51100
https://nvd.nist.gov/vuln/detail/CVE-2023-51100

Back to Vulnerability Database

CVE-2023-51100

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations