| शीर्षक | Tenda AC15 V15.03.05.19 Misconfiguration |
|---|
| विवरण | In Tenda AC15 V15.03.05.19, there is a insecure configuration vulnerability. The configuration property null passwords in samba configuration file is enabled, it allows client access to accounts that have null passwords. This misconfiguration can be exploited by remote attackers to gain unauthorized access to shared resources without proper authentication, potentially leading to information disclosure or unauthorized data manipulation.
Detail:
In the Tenda AC15 firmware, the partial content of /etc_ro/smb.conf is as follows.
[global]
......
null passwords = yes
...... |
|---|
| स्रोत | ⚠️ https://www.notion.so/Tenda-AC15-V15-03-05-19-3671f5ba98908023b508dc0330624dcd?source=copy_link |
|---|
| उपयोगकर्ता | L-14 (UID 98432) |
|---|
| सबमिशन | 21/05/2026 10:42 AM (19 दिन पहले) |
|---|
| संयम | 07/06/2026 12:18 PM (17 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 369113 [Tenda AC15 15.03.05.19 Samba /etc_ro/smb.conf कमजोर प्रमाणीकरण] |
|---|
| अंक | 17 |
|---|