Debug Interface Vulnerability in Tenda Routers
CVE-2017-9138

8HIGH

Key Information:

Vendor

Tenda
Status
F1200 Firmware
Vendor
CVE Published:
21 May 2017

What is CVE-2017-9138?

A debug-interface vulnerability exists in specific Tenda routers, allowing local access to bypass security measures. Unauthorized users can execute shell commands, retrieve results, and alter critical configurations such as usernames and passwords, raising significant security concerns.

References

http://www.tendacn.com/en/2017.html
x_refsource_MISC

CVSS V3.1

Score:
8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.