| |
Vulnerability CVE-2023-49437
Published: 2023-12-07 Modified: 2023-12-14
| Description: |
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList. |
Type:
CWE-77 (Improper Neutralization of Special Elements used in a Command ('Command Injection'))
References: |
https://github.com/ef4tless/vuln/blob/master/iot/AX12/SetNetControlList-3.md
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
