CVSS 6.3 · MEDIUM
CVE-2026-6989
A vulnerability has been found in Tenda F453 up to 1.0.0.3. Impacted is the function TendaTelnet of the file /goform/telnet of the component Telnet Service. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Ver en NVDSeveridad
Puntaje: 6.3(MEDIUM)
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LAV: NETWORK
AC: LOW
PR: LOW
UI: NONE
S: UNCHANGED
C: LOW
I: LOW
A: LOW
Tipo de falla (CWE):
CWE-74CWE-77EPSS
Probabilidad de explotación (próx. 30 días): 0.0021 (0.2%)
Percentil: 43.4%
EPSS: 2026-05-06
Afecta
tenda:f453_firmwaretenda:f453Descripción técnica
A vulnerability has been found in Tenda F453 up to 1.0.0.3. Impacted is the function TendaTelnet of the file /goform/telnet of the component Telnet Service. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Publicada: 25/4/2026, 18:16:18
Última modificación: 30/4/2026, 14:10:06