Name of the Vulnerable Software and Affected Versions:

Tenda G1 version 16.01.7.8(3660)

Description:

A vulnerability exists in the Tenda G1 device due to insufficient verification of data authenticity within the Firmware Update Handler component. The `check upload file` function is affected, allowing for potential remote code execution. Exploitation is considered difficult, but the exploit has been publicly disclosed.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.