Vulnerability Description
Tenda G300-F router firmware version 16.01.14.2 and prior contain an OS command injection vulnerability in the WAN diagnostic functionality (formSetWanDiag). The implementation constructs a shell command that invokes curl and incorporates attacker-controlled input into the command line without adequate neutralization. As a result, a remote attacker with access to the affected management interface can inject additional shell syntax and execute arbitrary commands on the device with the privileges of the management process.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tenda | G300-F Firmware | <= 16.01.14.2 |
| Tenda | G300-F | 1.0 |
Related Weaknesses (CWE)
References
- https://blog.evan.lat/blog/cve-2026-25857/ExploitThird Party Advisory
- https://www.tendacn.com/material/show/736333682028613Product
- https://www.vulncheck.com/advisories/tenda-g300-f-command-injection-via-formsetwThird Party AdvisoryVDB Entry
FAQ
What is CVE-2026-25857?
CVE-2026-25857 is a vulnerability with a CVSS score of 8.8 (HIGH). Tenda G300-F router firmware version 16.01.14.2 and prior contain an OS command injection vulnerability in the WAN diagnostic functionality (formSetWanDiag). The implementation constructs a shell comm...
How severe is CVE-2026-25857?
CVE-2026-25857 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-25857?
Check the references section above for vendor advisories and patch information. Affected products include: Tenda G300-F Firmware, Tenda G300-F.