CVE-2017-16923: OS Command Injection
First published: Tue Nov 21 2017(Updated: )
Command Injection vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US_AC15V1.0BR_V15.03.05.19_multi_TD01, Ac18 US_AC18V1.0BR_V15.03.05.05_multi_TD01, and Ac18 ac18_kf_V15.03.05.19(6318_)_cn devices allows remote unauthenticated attackers to execute arbitrary OS commands via a crafted cgi-bin/luci/usbeject?dev_name= GET request from the LAN. This occurs because the "sub_A6E8 usbeject_process_entry" function executes a system function with untrusted input.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tenda Ac9 Firmware | =us_ac9v1.0br_v15.03.05.14_multi_td01 | |
| Tenda AC9 | ||
| Tenda Ac9 Firmware | =ac9_kf_v15.03.05.19\(6318_\)_cn | |
| Tenda ac15 firmware | =us_ac15v1.0br_v15.03.05.18_multi_td01 | |
| Tenda AC15 | ||
| Tenda ac15 firmware | =us_ac15v1.0br_v15.03.05.19_multi_td01 | |
| Tenda Ac18 Firmware | =us_ac18v1.0br_v15.03.05.05_multi_td01 | |
| Tenda AC18 | ||
| Tenda Ac18 Firmware | =ac18_kf_v15.03.05.19\(6318_\)_cn |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-16923?
CVE-2017-16923 is a command injection vulnerability in the app_data_center on certain Tenda routers.
Which Tenda routers are affected by CVE-2017-16923?
The following Tenda routers are affected: Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US_AC15V1.0BR_V15.03.05.19_multi_TD01, Ac18 US_AC18V1.0BR_V15.03.05.05_multi_TD01, and Ac18 ac18_kf_V15.0…
How severe is CVE-2017-16923?
CVE-2017-16923 has a severity rating of 8.8 (high).
How can I fix CVE-2017-16923?
To fix CVE-2017-16923, it is recommended to update the firmware of the affected Tenda router to a secure version.
Is my Tenda router vulnerable to CVE-2017-16923?
If you have one of the affected Tenda router models and firmware versions mentioned in the vulnerability description, your router may be vulnerable.
- agent/weakness
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/tenda
- canonical/tenda ac9 firmware
- version/tenda ac9 firmware/us_ac9v1.0br_v15.03.05.14_multi_td01
- canonical/tenda ac9
- version/tenda ac9 firmware/ac9_kf_v15.03.05.19\(6318_\)_cn
- canonical/tenda ac15 firmware
- version/tenda ac15 firmware/us_ac15v1.0br_v15.03.05.18_multi_td01
- canonical/tenda ac15
- version/tenda ac15 firmware/us_ac15v1.0br_v15.03.05.19_multi_td01
- canonical/tenda ac18 firmware
- version/tenda ac18 firmware/us_ac18v1.0br_v15.03.05.05_multi_td01
- canonical/tenda ac18
- version/tenda ac18 firmware/ac18_kf_v15.03.05.19\(6318_\)_cn