CVE Catalog

CVE-2026-38062

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.45%

36th percentile — higher than 36% of all known CVEs

Summary

Tenda 5G03 version V05.03.02.04 (version 1.0) is vulnerable to command injection in the action_set_rat_mode function via the ratMode parameter.

Risk Assessment

Exploitation of this vulnerability could allow an attacker to execute arbitrary commands on the device, potentially leading to full control over it.

Recommendation

It is recommended to update the device firmware to the latest version to mitigate this vulnerability.

Original NVD description (English source)

Tenda 5G03 V05.03.02.04 (Version 1.0) is vulnerable to Command injection in the function action_set_rat_mode via the ratMode parameter.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS