Primary

Context

Tenda AC8, AC10, and AC18 Command Injection Vulnerability via Telnet HTTP Request

Vulnerability

A critical command injection vulnerability has been identified in Tenda AC8, AC10, and AC18 routers running firmware version 16.03.10.20. The issue arises in the HTTP request handler for the '/goform/telnet' route, where an unknown functionality allows for the execution of arbitrary commands. This vulnerability can be exploited remotely, but requires authentication as an admin user.

Impact

Exploitation of this vulnerability allows for unauthorized command execution on the affected device.

Reproduction

To reproduce this vulnerability, send a POST request to the '/goform/telnet' endpoint. Include a cookie with the 'user' set to 'admin'. The request can be made using HTTP/0.9.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

5.8

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

5.8

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda AC8, AC10, and AC18 Command Injection Vulnerability via Telnet HTTP Request

Vulnerability

Impact

Reproduction

Affected Products

Tenda AC10

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating