提交 #632268: Tenda AC20 V16.03.08.12 Hard-coded Credentials
| 标题 | Tenda AC20 V16.03.08.12 Hard-coded Credentials |
|---|---|
| 描述 | A hardcoded credentials vulnerability exists in the Tenda AC20 router (firmware V16.03.08.12). The root user account in the device uses a hardcoded password, which is stored in the /etc_ro/shadow file with an MD5-crypt hash. This allows attackers to obtain the root password through password-cracking tools, thereby gaining unauthorized access to the router's system. The vulnerability is caused by the hardcoding of the root user's password in the Tenda AC20 router firmware. During the analysis of the firmware, it was found that the /etc_ro/shadow file, which stores user account information, contains the root user's password hash. This hash can be easily cracked using password-cracking tools, revealing the plaintext password, thus enabling attackers to log in to the router's system with root privileges. |
| 来源 | ⚠️ https:/ |
| 用户 | n0ps1ed (UID 88889) |
| 提交 | 2025-08-12 06時01分 (10 月前) |
| 管理 | 2025-08-16 08時06分 (4 days later) |
| 状态 | 已接受 |
| VulDB条目 | 320359 [Tenda AC20 16.03.08.12 /etc_ro/shadow 弱身份验证] |
| 积分 | 20 |