Vulnerability Details CVE-2018-5767
An issue was discovered on Tenda AC15 V15.03.1.16_multi devices. A remote, unauthenticated attacker can gain remote code execution on the device with a crafted password parameter for the COOKIE header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.675
EPSS Ranking 98.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-5767
-
cpe:2.3:h:tendacn:ac15:-
-
cpe:2.3:o:tendacn:ac15_firmware:15.03.1.16