CNNVD-202601-4966 Information

CNNVD ID

CNNVD-202601-4966

Related CVE

CVE-2026-1638

• CNNVD Published: 2026-01-30

Description (Chinese)

Tenda AC21是中国腾达（Tenda）公司的一款无线路由器。 Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16版本存在命令注入漏洞，该漏洞源于对文件/goform/mDMZSetCfg中参数dmzIp的错误操作，可能导致命令注入。

Description (English)

Tenda AC21 is a wireless router of Tenda China. The version of Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16 contains a command-injection loophole, which results from an error in the dmzIp of the parameter in document/goform/mDMZSetCfg, which may lead to the command-injection.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

腾达

Published

2026-01-30

Last Modified

2026-02-24

References

https://vuldb.com/?id.343417 https://www.tenda.com.cn/ https://github.com/LX-LX88/cve/issues/26 https://vuldb.com/?submit.740871 https://vuldb.com/?ctiid.343417 https://access.redhat.com/security/cve/cve-2026-1638