Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. Unauthorized password change via the web management portal allows an unauthenticated remote attacker to change the administrator password by sending a specially crafted HTTP POST request to the setLoginPassword function, bypassing the authentication mechanism.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tenda W18E 访问控制错误漏洞
Vulnerability Description
Tenda W18E是中国腾达(Tenda)公司的一款无线路由器。 Tenda W18E 16.01.0.8(1625)版本存在访问控制错误漏洞,该漏洞源于容易受到错误访问控制的攻击,导致攻击者可通过更改管理员密码绕过身份验证机制。
CVSS Information
N/A
Vulnerability Type
N/A