Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-18728

An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. They allow remote code execution via shell metacharacters in the usbName field to the __fastcall function with a POST request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2018-18728
  • Tenda » Ac15 » Version: N/A
    cpe:2.3:h:tenda:ac15:-
  • Tenda » Ac18 » Version: N/A
    cpe:2.3:h:tenda:ac18:-
  • Tenda » Ac9 » Version: N/A
    cpe:2.3:h:tenda:ac9:-
  • Tenda » Ac15 Firmware » Version: 15.03.05.19_cn
    cpe:2.3:o:tenda:ac15_firmware:15.03.05.19_cn
  • Tenda » Ac18 Firmware » Version: 15.03.05.19(6318)_cn
    cpe:2.3:o:tenda:ac18_firmware:15.03.05.19(6318)_cn
  • Tenda » Ac9 Firmware » Version: 15.03.05.19(6318)_cn
    cpe:2.3:o:tenda:ac9_firmware:15.03.05.19(6318)_cn


Products
Pricing
Contact Us

Shodan ® - All rights reserved