| tiêu đề | Tenda RP3 Pro V22.5.7.93 CWE-287 Improper Authentication |
|---|
| Mô tả | During the firmware update process, there is firmware authentication verification vulnerability in force_upgrade.sh. To be specific, the firmware verification vulnerability includes the use of hard-coded authentication verification information and improper authentication verification. The firmware image name xs7302 is stored as hard-coded information in variable current_soc_name. The firmware password Td2N3ww1.0_tenda_force_upgrade is stored as hard-coded information in variable current_force_upgrade_pwd. In addition, force_upgrade.sh obtains the force_upgrade_pwd from force_upgrade_info through offsetting 20 bytes. After that, performs authentication verification through comparing force_upgrade_pwd and current_force_upgrade_pwd. If the hackers obtain force_upgrade_pwd and current_force_upgrade_pwd, they could bypass the authentication verification. This issue in the firmware update process of Tenda RP3 Pro(firmware version:V22.5.7.93) allows attackers to execute arbitrary code or cause denial of service via uploading a compromised firmware with the same hard-coded verification information as the new firmware for update. |
|---|
| Nguồn | ⚠️ https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Tenda/RP3.md |
|---|
| Người dùng | IOT_Res (UID 81722) |
|---|
| Đệ trình | 11/10/2025 04:48 (cách đây 8 các tháng) |
|---|
| Kiểm duyệt | 12/10/2025 15:14 (1 day later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 328085 [Tenda RP3 Pro đến 22.5.7.93 Firmware Update force_upgrade.sh current_force_upgrade_pwd xác thực yếu] |
|---|
| điểm | 20 |
|---|