ГлавнаяУязвимости → CVE-2026-5841
7.3высокая

CVE-2026-5841

Описание

A weakness has been identified in Tenda i3 1.0.0.6(2204). The affected element is the function R7WebsSecurityHandler of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.

Затрагиваемое ПО
Tenda I3 firmwareTenda I3
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/MrXiaoFan/TendaVul/tree/main/tenda-i3-V1.0.0.6(2204)-R7WebsSecurityHandler-Authentication%20Bypass%20Issueshttps://vuldb.com/submit/789935https://vuldb.com/vuln/356297https://vuldb.com/vuln/356297/ctihttps://www.tenda.com.cn/