cve/CVE-2024-32292.md at b042ce818882885eb2b8bc958a4221d9724c69f6 - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

654 B

Raw Blame History

CVE-2024-32292

Description

Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

POC

Reference

https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/W30E/formexecommand_cmdi.md

Github

No PoCs found on GitHub currently.