| tiêu đề | Tenda F1202 V1.2.0.14/V1.2.0.20/V1.2.0.9 Hard-coded Credentials |
|---|
| Mô tả | A hard-coded credentials vulnerability was identified in the Tenda AP W12 device running firmware version V1.2.0.14/V1.2.0.20/V1.2.0.9. The root user account uses a hard-coded password (cracked as "Fireitup" using the John tool). This password is stored in the file /etc_ro/shadow using MD5-crypt hashing, which can be easily decrypted by tools like John and exploited. For instance, it allows unauthorized root access to the device through network-accessible services or the administrative interface. |
|---|
| Nguồn | ⚠️ https://github.com/August829/Yu/blob/main/58ead8e7e08bfb0e9.md |
|---|
| Người dùng | Yu Bao (UID 88956) |
|---|
| Đệ trình | 25/08/2025 04:51 (cách đây 10 các tháng) |
|---|
| Kiểm duyệt | 01/09/2025 17:12 (8 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 322130 [Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20 Administrative Interface /etc_ro/shadow xác thực yếu] |
|---|
| điểm | 20 |
|---|