| タイトル | Tenda Tenda i24v3.0 V3.0.0.8(4008) V3.0.0.8(4008) Hard-coded Credentials |
|---|
| 説明 | Tenda i24v3.0 V3.0.0.8(4008) was discovered to contain a hardcoded password vulnerability in etc_ro/shadow, which allows attackers to log in as root. By supplying the specific input "Fireitup," an attacker can trigger the use of embedded hard-coded credentials. This vulnerability is restricted to local access and demands a sophisticated level of execution, making it relatively challenging to exploit. Nevertheless, the Proof of Concept (PoC) has been released to the public and could be weaponized. |
|---|
| ソース | ⚠️ https://github.com/vuln-1/vuln/blob/main/Tenda/i24v3.0_V3.0.0.8/report-1.md |
|---|
| ユーザー | vlun-1 (UID 94005) |
|---|
| 送信 | 2025年12月30日 16:53 (5 月 ago) |
|---|
| モデレーション | 2025年12月30日 18:35 (2 hours later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 339075 [Tenda i24 迄 65.10.15.6 Shadow File 弱い認証] |
|---|
| ポイント | 20 |
|---|