5 matches found
CVE-2025-46630
Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable 'ate' a remote system management binary by sending a /goform/ate web request...
CVE-2025-46630
creationtimestamp| type| source ---|---|--- 2025-05-01 22:01:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cptx5vg2r 2025-05-01 23:12:43+00:00| seen| https://t.me/cvedetector/24273 2025-05-02 15:16:54+00:00| published-proof-of-concept|...
CVE-2025-46630
Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable 'ate' a remote system management binary by sending a /goform/ate web request...
CVE-2025-46630
Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable 'ate' a remote system management binary by sending a /goform/ate web request...
CVE-2025-46630
CVE-2025-46630 describes an access-control weakness in the Tenda RX2 Pro web management portal (firmware 16.03.30.14). An unauthenticated remote attacker can enable the remote system management binary named ate by issuing a request to the endpoint /goform/ate. Multiple sources corroborate: the CV...