CNNVD-202512-5702 Information

CNNVD ID

CNNVD-202512-5702

Related CVE

CVE-2025-15371

• CNNVD Published: 2025-12-31

Description (Chinese)

Tenda i24等都是中国腾达（Tenda）公司的产品。Tenda i24是一款无线路由器。Tenda 4G03是一款无线路由器Tenda 4G05是一款无线路由器 Tenda多款产品存在信任管理问题漏洞，该漏洞源于对Shadow File组件输入Fireitup的错误操作，可能导致硬编码凭证。以下产品及版本受到影响：Tenda i24、Tenda 4G03 Pro、Tenda 4G05、Tenda 4G08、Tenda G0-8G-PoE、Tenda Nova MW5G和Tenda TEG5328F 65.10.15.6及之前版本。

Description (English)

Tenda i24 and others are products of Tenda, China. Tenda i24 is a wireless router. Tenda 4G03 is a wireless router Tenda 4G05 is a wireless router There is a trust management gap in a number of Tenda products, which stems from an error in the input of the Shadow File component into Fireitup, which may lead to a hard-coded voucher. The following products and versions were affected: Tenda i24, Tenda 4G03 Pro, Tenda 4G05, Tenda 4G08, Tenda G0-8G-PoE, Tenda Nova MW5G and Tenda Teg5328F 65.10.15.6 and earlier.

Hazard Level

Medium

Vulnerability Type

信任管理问题

Affected Vendor

腾达

Published

2025-12-31

Last Modified

2026-02-24

References

https://github.com/vuln-1/vuln/blob/main/Tenda/i24v3.0_V3.0.0.8/report-1.md https://vuldb.com/?ctiid.339075 https://vuldb.com/?id.339075 https://vuldb.com/?submit.727155 https://vuldb.com/?submit.727283 https://vuldb.com/?submit.727284 https://vuldb.com/?submit.727285 https://vuldb.com/?submit.727302 https://vuldb.com/?submit.727305 https://vuldb.com/?submit.727306 https://www.tenda.com.cn/