Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tenda AC15 Firmware Update check_fw data authenticity
Vulnerability Description
A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the function check_fw_type/split_fireware/check_fw of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
Tenda AC15 数据伪造问题漏洞
Vulnerability Description
Tenda AC15是中国腾达(Tenda)公司的一款无线路由器。 Tenda AC15 15.13.07.13版本存在数据伪造问题漏洞,该漏洞源于固件更新处理组件中函数check_fw_type/split_fireware/check_fw的数据真实性验证不足。
CVSS Information
N/A
Vulnerability Type
N/A