CVE-2023-49429 | Tenda AX9 22.03.01.46 /goform/setModules setDeviceInfo mac command injection

CVE-2023-49429 | Tenda AX9 22.03.01.46 /goform/setModules setDeviceInfo mac command injection

A vulnerability was found in Tenda AX9 22.03.01.46 and classified as critical. Affected by this issue is the function setDeviceInfo of the file /goform/setModules. The manipulation of the argument mac leads to command injection. This vulnerability is handled as CVE-2023-49429. The attack can only be initiated within the local network. There is no exploit available.