| 标题 | Tenda AX12 pro V2 V16.03.49.24_cn Hard-coded Credentials |
|---|
| 描述 | A critical security vulnerability has been identified in the Telnet service of Tenda routers. The device utilizes an insecure, predictable algorithm to generate the password for the command-line interface (CLI).root
Instead of a secure, random, or user-set password, the firmware relies on a hardcoded credential generation mechanism. The password is derived by combining the device's MAC address with a static hardcoded string found within the firmware binary, and then encoding the result in Base64.
This mechanism effectively functions as a vendor backdoor. Since the MAC address is publicly visible (on the device label) and easily discoverable via network scanning (ARP), and the hardcoded string is constant across all devices of this model, an attacker can trivially calculate the root password for any target device without prior authentication. |
|---|
| 来源 | ⚠️ https://github.com/QIU-DIE/CVE/issues/49 |
|---|
| 用户 | hhsw34 (UID 91076) |
|---|
| 提交 | 2026-01-16 13時34分 (5 月前) |
|---|
| 管理 | 2026-01-29 13時32分 (13 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 343378 [Tenda AX12 Pro V2 16.03.49.24_cn Telnet Service 弱身份验证] |
|---|
| 积分 | 20 |
|---|