CNNVD-202511-1423 Information
Nov 12, 2025
cve
CNNVD ID
CNNVD-202511-1423
Related CVE
- CNNVD Published: 2025-11-12
Description (Chinese)
Tenda AC15是中国腾达(Tenda)公司的一款无线路由器。 Tenda AC15 v15.03.05.18_multi版本存在安全漏洞,该漏洞源于认证cookie暴露密码哈希并使用低熵会话标识符,可能导致会话劫持。
Description (English)
Tenda AC15 is a wireless router of Tenda, China. There is a security loophole in Tenda AC15 v15.03.05.18 multi version, which originates from the authentication of cookies to expose the password Hashi and to use the low entropy session identifier, which may lead to the hijacking of a session.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
腾达
Published
2025-11-12
Last Modified
2026-02-24
References
http://tenda.com https://github.com/Remenis/CVE-2025-63666 https://access.redhat.com/security/cve/cve-2025-63666
Share on: