Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded...
Moderate severity
Unreviewed
Published
Jul 14, 2025
to the GitHub Advisory Database
•
Updated Jul 14, 2025
Description
Published by the National Vulnerability Database
Jul 14, 2025
Published to the GitHub Advisory Database
Jul 14, 2025
Last updated
Jul 14, 2025
Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtaining administrative access
References