| शीर्षक | Tenda TDSEE mobile application 1.7.12 Authorization Bypass |
|---|
| विवरण | In the TDSEE app, I found there was no rate limit in the confirmation code requests in the password reset functionality, resulting in account takeover.
Knowing the victim’s email, the attacker could change the account password by going through the 6-digit password reset confirmation code.
In the application version 1.7.15, the vendor released a patch, setting a limit on the number of requests per second.
Sources:
https://blog.kevgen.ru/posts/account_takeover_in_tdsee_app/
https://github.com/k3vg3n/researches/blob/main/Account_takeover_in_TDSEE_app.md |
|---|
| स्रोत | ⚠️ https://blog.kevgen.ru/posts/account_takeover_in_tdsee_app/ |
|---|
| उपयोगकर्ता | k3vg3n (UID 86142) |
|---|
| सबमिशन | 06/06/2025 07:44 PM (11 महीनों पहले) |
|---|
| संयम | 08/06/2025 03:30 PM (2 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 311623 [Tenda TDSEE App तक 1.7.12 Password Reset Confirmation Code /app/ConfirmSmsCode सूचना का प्रकटीकरण] |
|---|
| अंक | 20 |
|---|