cve/2023/CVE-2023-37144.md

### [CVE-2023-37144](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37144)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Tenda AC10 v15.03.06.26 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.

### POC

#### Reference
- https://github.com/DaDong-G/Vulnerability_info/blob/main/ac10_command_injection/Readme.md

#### Github
- https://github.com/pwn2ooown/2024-NCKUCTF-Pwn-Course
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2023-37144](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37144)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`Tenda AC10 v15.03.06.26 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac.`

			`### POC`

			`#### Reference`
			`- https://github.com/DaDong-G/Vulnerability_info/blob/main/ac10_command_injection/Readme.md`

			`#### Github`
Update CVE sources 2024-08-10 19:04 2024-08-10 19:04:30 +00:00			`- https://github.com/pwn2ooown/2024-NCKUCTF-Pwn-Course`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00