CVE-2026-5962

HIGH WAF: High

CVSS 7.3 Published: 2026-04-09

CWE-22

A vulnerability was detected in Tenda CH22 1.0.0.6(468). This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used.

WAF Coverage Analysis

Path Traversal High WAF Coverage

OWASP: A01:2021 Broken Access Control

930xxx - Local File Inclusion

References

github.com
vuldb.com
vuldb.com
vuldb.com
www.tenda.com.cn

Back to CVE Database