CVE-2026-6024

HIGH WAF: High

CVSS 7.3 Published: 2026-04-10

CWE-22

A vulnerability was determined in Tenda i6 1.0.0.7(2204). Affected by this issue is the function R7WebsSecurityHandlerfunction of the component HTTP Handler. This manipulation causes path traversal. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

WAF Coverage Analysis

Path Traversal High WAF Coverage

OWASP: A01:2021 Broken Access Control

930xxx - Local File Inclusion

References

github.com
vuldb.com
vuldb.com
vuldb.com
www.tenda.com.cn

Back to CVE Database