Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-44877

Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the formSetSambaConf function via the usbname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.7%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2025-44877
  • Tenda » Ac9 » Version: N/A
    cpe:2.3:h:tenda:ac9:-
  • Tenda » Ac9 Firmware » Version: 15.03.06.42_multi
    cpe:2.3:o:tenda:ac9_firmware:15.03.06.42_multi


Products
Pricing
Contact Us

Shodan ® - All rights reserved