CVE-2023-29680

2023-05-0100:00:00

mitre

www.cve.org

cleartext

transmission

vulnerability

tenda n301

firmware

5.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

Cleartext Transmission in set-cookie:ecos_pw: Tenda N301 v6.0, Firmware v12.02.01.61_multi allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

References

medium.com/%400ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62

www.youtube.com/watch?v=m7ZHfFcSKpU&ab_channel=0ta