CVE-2025-46631 Information
May 02, 2025
cve
Description
Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable telnet access to the router’s OS by sending a /goform/telnet web request.
Reference
https://blog.uturn.dev/#/writeups/iot-village/tenda-rx2pro/README?id=cve-2025-46631-enable-telnet-unauthenticated-through-httpd https://www.tendacn.com/us/default.html
Related CNNVD
CNNVD-202507-1156 (Published: 2025-07-08)
Share on: