CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-10986

A CSRF issue in the /goform/SysToolReboot endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to reboot the device and cause denial of service via a payload hosted by an attacker-controlled web page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 7.1

References

https://blog.securityevaluators.com/tenda-ac1900-vulnerabilities-discovered-and-exploited-e8e26aa0bc68
https://www.ise.io/research/
https://blog.securityevaluators.com/tenda-ac1900-vulnerabilities-discovered-and-exploited-e8e26aa0bc68
https://www.ise.io/research/

Products affected by CVE-2020-10986

Tenda » Ac15 » Version: N/A

cpe:2.3:h:tenda:ac15:-
Tenda » Ac15 Firmware » Version: 15.03.05.19

cpe:2.3:o:tenda:ac15_firmware:15.03.05.19

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-10986

Products

Pricing

Contact Us