CNNVD-202512-5115 Information

CNNVD ID

CNNVD-202512-5115

Related CVE

CVE-2025-15254

• CNNVD Published: 2025-12-30

Description (Chinese)

Tenda W6-S是中国腾达（Tenda）公司的一个无线接入点设备。 Tenda W6-S 1.0.0.4版本存在操作系统命令注入漏洞，该漏洞源于对组件ATE Service中文件/goform/ate的错误操作，可能导致os命令注入。

Description (English)

Tenda W6-S is a wireless access point facility for Tenda, China. Version Tenda W6-S1.0.0.4 contains a loophole in the operating system command, which results from an error in the file/goform/ate of component ATE Service, which may lead to an Os command injection.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

腾达

Published

2025-12-30

Last Modified

2026-02-24

References

https://github.com/dwBruijn/CVEs/blob/main/Tenda/ate.md https://www.tenda.com.cn/ https://vuldb.com/?ctiid.338644 https://vuldb.com/?id.338644 https://vuldb.com/?submit.725499