CVE-2023-49435: Command Injection
First published: Thu Dec 07 2023(Updated: )
Tenda AX9 V22.03.01.46 is vulnerable to command injection.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Tenda AX9 Firmware | =22.03.01.46 | |
| Tenda AX9 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-49435?
CVE-2023-49435 is classified as a high severity vulnerability due to its command injection risk.
How do I fix CVE-2023-49435?
To fix CVE-2023-49435, update the Tenda AX9 firmware to the latest version that addresses this vulnerability.
What impact does CVE-2023-49435 have on Tenda AX9 devices?
CVE-2023-49435 allows an attacker to execute arbitrary commands on the Tenda AX9 device, leading to potential unauthorized access.
Is my Tenda AX9 device vulnerable if running an older firmware version?
Yes, if your Tenda AX9 device is running firmware version 22.03.01.46 or older, it is vulnerable to CVE-2023-49435.
What systems are affected by CVE-2023-49435?
CVE-2023-49435 affects Tenda AX9 devices running firmware version 22.03.01.46.
- agent/event
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- vendor/tenda
- canonical/tenda ax9 firmware
- version/tenda ax9 firmware/22.03.01.46