cvedb.io
CVE-2017-9138
HIGH · CVSS 8
EPSS exploitation probability: 0%
Published 2017-05-21T22:29:00.180 · Last modified 2026-06-17T01:27:32.810

Summary

There is a debug-interface vulnerability on some Tenda routers (FH1202/F1202/F1200: versions before 1.2.0.20). After connecting locally to a router in a wired or wireless manner, one can bypass intended access restrictions by sending shell commands directly and reading their results, or by entering shell commands that change this router's username and password.

Affected products

tendacn — f1200_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when tendacn ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.