Security Advisory
CVE-2022-24148
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg. This vulnerability allows attackers to execute arbitrary commands via the dmzIp parameter.