Security Advisory

CVE-2021-47802

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-21 17:27:33

Last updated 2026-01-22 22:10:45

Assigner VulnCheck

State PUBLISHED

Description

Tenda D151 and D301 routers contain an unauthenticated configuration download vulnerability that allows remote attackers to retrieve router configuration files. Attackers can send a request to /goform/getimage endpoint to download configuration data including admin credentials without authentication.

← Browse all CVEs View on cve.org ↗