exploitDog

CVE-2025-46634

Опубликовано: 01 мая 2025

Источник: nvd

CVSS3: 8.2

EPSS Низкий

Описание

Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an unauthenticated attacker to authenticate to the web management portal by collecting credentials from observed/collected traffic. It implements encryption, but not until after the user has transmitted the hash of their password in cleartext. The hash can be replayed to authenticate.

Ссылки

https://blog.uturn.dev/#/writeups/iot-village/tenda-rx2pro/README?id=cve-2025-46634-transmission-of-plaintext-credentials-in-httpd
Exploit
Third Party Advisory
https://www.tendacn.com/us/default.html
Product

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:tenda:rx2_pro_firmware:16.03.30.14:*:*:*:*:*:*:*

cpe:2.3:h:tenda:rx2_pro:-:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00079

Низкий

8.2 High

CVSS3

Дефекты

CWE-312

Связанные уязвимости

GHSA-pm2w-vj7f-h667

CVSS3: 8.2

github

9 месяцев назад

Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an unauthenticated attacker to authenticate to the web management portal by collecting credentials from observed/collected traffic. It implements encryption, but not until after the user has transmitted the hash of their password in cleartext. The hash can be replayed to authenticate.

EPSS

Процентиль: 23%

0.00079

Низкий

8.2 High

CVSS3

Дефекты

CWE-312