Tenda G1 Firmware 15.11.0.16(9024)_CN
Approved changes feed: RSS · Atom
cpe:2.3:o:tendacn:g1_firmware:15.11.0.16\(9024\)_cn:*:*:*:*:*:*:*
part: o version: 15.11.0.16(9024)_cn update: *
| Vendor | Tendacn (911f347d-94dc-5fe9-b545-6a7f771d2f53) |
|---|---|
| Product | G1 Firmware (6e1761a5-f257-550b-ae02-28a9875a1ee5) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-27692 |
vulnerable | 2026-06-03 14:44:16.490643 |
Details available
Command Injection in Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS commands via a crafted "action/umountUSBPartition" request. This occurs because the "formSetUSBPartitionUmount" function executes the "doSystemCmd" function with untrusted input.
Published: 2021-04-15T23:14:32.000Z
Updated: 2024-08-03T21:26:10.675Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-27691 |
vulnerable | 2026-06-03 14:44:16.487712 |
Details available
Command Injection in Tenda G0 routers with firmware versions v15.11.0.6(9039)_CN and v15.11.0.5(5876)_CN , and Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS commands via a crafted action/setDebugCfg request. This occurs because the "formSetDebugCfg" function executes glibc's system function with untrusted input.
Published: 2021-04-15T23:14:46.000Z
Updated: 2024-08-03T21:26:10.746Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.