Rx2 Pro Firmware Security Vulnerabilities and Issues — Rx2 Pro Firmware CVE List

Lucene search

TendaRx2 Pro Firmware

4 matches found

CVE•added 2025/05/01 8:15 p.m.•48 views

CVE-2025-46631

Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable telnet access to the router's OS by sending a /goform/telnet web request.

6.5CVSS7.1AI score0.00098EPSS

CVE•added 2025/05/01 8:15 p.m.•46 views

CVE-2025-46629

Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where 'ate' has been enabled by sending a crafted UDP packet

6.5CVSS7.1AI score0.00069EPSS

CVE•added 2025/05/01 8:15 p.m.•44 views

CVE-2025-46630

Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable 'ate' (a remote system management binary) by sending a /goform/ate web request.

6.5CVSS6.8AI score0.00071EPSS

CVE•added 2025/05/01 8:15 p.m.•44 views

CVE-2025-46632

Initialization vector (IV) reuse in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an attacker to discern information about or more easily decrypt encrypted messages between client and server.

6.5CVSS6.4AI score0.00053EPSS