|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-06-16 | |
| Rule Name: | Tenda HG9 Router Authenticated Command Injection Vulnerability (CVE-2022-30023) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Tenda is the world's leading supplier of network communication equipment. Its products cover Ethernet, wireless local area network, broadband access, and power line communication. In addition to the existing main core fields such as transmission, switching, and routing, it is gradually entering the mobile Internet terminal, digital home , network security and other fields. In its HG9 router, there is an authenticated command injection vulnerability. | |
| Impact: | An attacker can execute arbitrary command via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | http://tenda.com http://ont.com https://github.com/Haniwa0x01/CVE-2022-30023 https://www.cybersecurity-help.cz/vdb/SB2022062016 |
|
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |