CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-42634

A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda AC9 v15.03.06.42. As a result, attacker can execute OS commands with root privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/goldds96/Report/blob/main/Tenda/AC9/CI.md

Products affected by CVE-2024-42634

Tenda » Ac9 » Version: N/A

cpe:2.3:h:tenda:ac9:-
Tenda » Ac9 Firmware » Version: 15.03.06.42

cpe:2.3:o:tenda:ac9_firmware:15.03.06.42

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42634

Products

Pricing

Contact Us