Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tenda G1 Firmware Update check_upload_file data authenticity
Vulnerability Description
A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this issue is the function check_upload_file of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
Tenda G1 数据伪造问题漏洞
Vulnerability Description
Tenda G1是中国腾达(Tenda)公司的一款企业级 Ap 管理路由器。 Tenda G1 16.01.7.8(3660)版本存在数据伪造问题漏洞,该漏洞源于固件更新处理组件中函数check_upload_file的数据真实性验证不足。
CVSS Information
N/A
Vulnerability Type
N/A