CVE-2026-5849

HIGH WAF: High

CVSS 7.3 Published: 2026-04-09

CWE-22

A vulnerability was determined in Tenda i12 1.0.0.11(3862). The impacted element is an unknown function of the component HTTP Handler. Executing a manipulation can lead to path traversal. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

WAF Coverage Analysis

Path Traversal High WAF Coverage

OWASP: A01:2021 Broken Access Control

930xxx - Local File Inclusion

References

github.com
vuldb.com
vuldb.com
vuldb.com
www.tenda.com.cn

Back to CVE Database