Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tenda TDSEE App Password Reset Confirmation Code ConfirmSmsCode excessive authentication
Vulnerability Description
A vulnerability was found in Tenda TDSEE App up to 1.7.12. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/ConfirmSmsCode of the component Password Reset Confirmation Code Handler. The manipulation leads to improper restriction of excessive authentication attempts. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 1.7.15 is able to address this issue. It is recommended to upgrade the affected component.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
过多认证尝试的限制不恰当
Vulnerability Title
Tenda TDSEE 安全漏洞
Vulnerability Description
Tenda TDSEE是中国腾达(Tenda)公司的一款用于管理 Tenda 品牌摄像头产品的应用程序。 Tenda TDSEE 1.7.12及之前版本存在安全漏洞,该漏洞源于密码重置确认码处理不当,可能导致过度认证尝试。
CVSS Information
N/A
Vulnerability Type
N/A