The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote malicious users to execute arbitrary system commands via the deviceName POST parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tenda ac15_firmware 15.03.05.19 |