Tendacn Ac9v1.0 Firmware 15.03.05.16multitru

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:tendacn:ac9v1.0_firmware:15.03.05.16multitru:*:*:*:*:*:*:*

part: o version: 15.03.05.16multitru update: *

VendorTendacn (911f347d-94dc-5fe9-b545-6a7f771d2f53)
ProductAc9V1.0 Firmware (af58b8c7-bbc1-59e8-9963-380e82931ca3)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-5072 vulnerable 2026-06-03 14:40:28.899868 Details available
HIGH (7.8)
An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially crafted HTTP POST request can cause a command injection in the DNS2 post parameters, resulting in code execution. An attacker can send HTTP POST request with command to trigger this vulnerability.
Published: 2019-11-21T16:16:06.000Z
Updated: 2024-08-04T19:47:55.651Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-5071 vulnerable 2026-06-03 14:40:28.898874 Details available
HIGH (7.8)
An exploitable command injection vulnerability exists in the /goform/WanParameterSetting functionality of Tenda AC9 Router AC1200 Smart Dual-Band Gigabit WiFi Route (AC9V1.0 Firmware V15.03.05.16multiTRU). A specially crafted HTTP POST request can cause a command injection in the DNS1 post parameters, resulting in code execution. An attacker can send HTTP POST request with command to trigger this vulnerability.
Published: 2019-11-21T16:15:49.000Z
Updated: 2024-08-04T19:47:55.647Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.