{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-11556: Tenda F451 Web Management WriteFacMac formWriteFacMac os command injection","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-11556","status":"final","version":"1","initial_release_date":"2026-06-08T18:00:15.317Z","current_release_date":"2026-06-09T14:35:15.927Z","revision_history":[{"date":"2026-06-08T18:00:15.317Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"A security flaw has been discovered in Tenda F451 1.0.0.7/1.0.0.9. Impacted is the function formWriteFacMac of the file /goform/WriteFacMac of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be used for attacks.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-11556 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-11556"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-11556"},{"category":"external","summary":"VDB-369166 | Tenda F451 Web Management WriteFacMac formWriteFacMac os command injection","url":"https://vuldb.com/vuln/369166"},{"category":"external","summary":"VDB-369166 | CTI Indicators (IOB, IOC, TTP, IOA)","url":"https://vuldb.com/vuln/369166/cti"},{"category":"external","summary":"CVE-2026-11556 | CVE Analysis and Report","url":"https://vuldb.com/cve/CVE-2026-11556"},{"category":"external","summary":"Submit #836476 | Tenda Tenda F451 Wireless Router V1.0.0.7, V1.0.0.9 OS Command Injection","url":"https://vuldb.com/submit/836476"},{"category":"external","summary":"github.com","url":"https://github.com/Robots10/IoT_vlu/blob/main/reports/Tenda/formWriteFacMac2/formWriteFacMac.md"},{"category":"external","summary":"tenda.com.cn","url":"https://www.tenda.com.cn/"}]},"product_tree":{"branches":[{"category":"vendor","name":"Tenda","branches":[{"category":"product_name","name":"F451","branches":[{"category":"product_version","name":"1.0.0.7","product":{"name":"Tenda F451 1.0.0.7","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:tenda:f451:*:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"1.0.0.9","product":{"name":"Tenda F451 1.0.0.9","product_id":"CSAFPID-2","product_identification_helper":{"cpe":"cpe:2.3:a:tenda:f451:*:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-11556","title":"Tenda F451 Web Management WriteFacMac formWriteFacMac os command injection","notes":[{"category":"description","text":"A security flaw has been discovered in Tenda F451 1.0.0.7/1.0.0.9. Impacted is the function formWriteFacMac of the file /goform/WriteFacMac of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be used for attacks.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1","CSAFPID-2"]},"scores":[{"cvss_v4":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P","baseScore":8.7,"baseSeverity":"HIGH"},"products":["CSAFPID-1","CSAFPID-2"]}],"remediations":[{"category":"none_available","details":"No fixed version is published yet. Monitor the upstream advisory.","product_ids":["CSAFPID-1","CSAFPID-2"]}]}]}