CVE-2026-5962Path Traversal in Ch22

CWE-22Path Traversal3 documents3 sources
Severity
6.9MEDIUMNVD
EPSS
0.1%
top 81.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenda Ch22
Timeline
PublishedApr 9

Description

A vulnerability was detected in Tenda CH22 1.0.0.6(468). This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages1 packages

CVEListV5tenda/ch221.0.0.6(468)

🔴Vulnerability Details

2
CVEList
Tenda CH22 httpd R7WebsSecurityHandlerfunction path traversal2026-04-09
GHSA
GHSA-m4j2-cxpj-8gp8: A vulnerability was detected in Tenda CH22 12026-04-09
CVE-2026-5962 — Path Traversal in Tenda Ch22 | cvebase