CVE-2020-28095
Published
CVSS v3
7.5
HIGH
CVSS v2
7.8
HIGH
Affected
1
PROJECT
Description
On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, a large HTTP POST request sent to the change password API will trigger the router to crash and enter an infinite boot loop.
A vuln existss in Tenda AC6 router which allows an attacker to launch a telnet session with root access.
GitHub