cbcvebase.
CVE-2023-23080
published 2023-02-27

CVE-2023-23080: Certain Tenda products are vulnerable to command injection. This affects Tenda CP7 Tenda CP7<=V11.10.00.2211041403 and Tenda CP3 v.10 Tenda CP3…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Certain Tenda products are vulnerable to command injection. This affects Tenda CP7 Tenda CP7<=V11.10.00.2211041403 and Tenda CP3 v.10 Tenda CP3 v.10<=V20220906024_2025 and Tenda IT7-PCS Tenda IT7-PCS<=V2209020914 and Tenda IT7-LCS Tenda IT7-LCS<=V2209020914 and Tenda IT7-PRS Tenda IT7-PRS<=V2209020908.

Affected

5 ranges
VendorProductVersion rangeFixed in
tendacp3_firmware<= 20220906024_2025
tendacp7_firmware<= 1.10.00.2211041403
tendait7-lcs_firmware<= 2209020914
tendait7-pcs_firmware<= 2209020914
tendait7-prs_firmware<= 2209020908