cve/2024/CVE-2024-30645.md

CVE-2024-30645

Description

Tenda AC15V1.0 V15.03.20_multi has a command injection vulnerability via the deviceName parameter.

POC

Reference

• https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AC15/V1.0%20V15.03.20_multi/setUsbUnload.md

Github

• https://github.com/LaPhilosophie/IoT-vulnerable
• https://github.com/fkie-cad/nvd-json-data-feeds
• https://github.com/gh-ost00/IOT-Vulnerable_POC
• https://github.com/helloyhrr/IoT_vulnerability