cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-9793,https://securityvulnerability.io/vulnerability/CVE-2024-9793,Remote Command Injection Vulnerability in Tenda AC1206 Router,"A severe vulnerability has been identified in Tenda's AC1206 router affecting all versions up to 15.03.06.23. This security flaw resides in the ate_iwpriv_set and ate_ifconfig_set functions located in the /goform/ate file, enabling attackers to perform command injection. Given the nature of this vulnerability, it can be exploited remotely, allowing unauthorized users to execute harmful commands that may lead to the compromise of the router's functionality and security. Despite early disclosure of the vulnerability to Tenda, no response or remediation has been provided by the vendor, raising concerns over user safety. It is crucial for users of the affected devices to take immediate action to mitigate the risks associated with this vulnerability.",Tenda,Ac1206,9.8,CRITICAL,0.031530000269412994,false,,false,false,true,2024-10-10T14:31:06.000Z,true,false,false,,2024-10-10T15:31:06.625Z,0
CVE-2024-2897,https://securityvulnerability.io/vulnerability/CVE-2024-2897,Remote Command Injection Vulnerability in Tenda AC7 Router,"A significant security vulnerability has been detected in the Tenda AC7 router's firmware version 15.03.06.44, specifically within the formWriteFacMac function. This vulnerability allows an attacker to exploit the MAC address argument, leading to OS command injection. The flaw can be triggered remotely, making it a critical concern for users. Despite early notifications to the vendor, Tenda has yet to respond, heightening the potential for exploitation as details of the vulnerability have been made public. Users of the AC7 router should take immediate precautions to mitigate risks associated with this threat.",Tenda,Ac7,8.8,HIGH,0.021870000287890434,false,,false,false,true,2024-03-26T18:31:04.000Z,true,false,false,,2024-03-26T18:31:04.287Z,0