CVE-2025-15371
published 2025-12-31CVE-2025-15371: A vulnerability has been found in Tenda i24, 4G03 Pro, 4G05, 4G08, G0-8G-PoE, Nova MW5G and TEG5328F up to 65.10.15.6. Affected is an unknown function of the…
high7.1CVSS 4.0
AVLACLATNPRLUINVCHVIHVAHSCNSINSANEPCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability has been found in Tenda i24, 4G03 Pro, 4G05, 4G08, G0-8G-PoE, Nova MW5G and TEG5328F up to 65.10.15.6. Affected is an unknown function of the component Shadow File. Such manipulation with the input Fireitup leads to hard-coded credentials. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
Affected
55 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | azl3_sox_14.4.2.0-33_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_sox_14.4.2.0-33_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g03_pro | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g05 | — | — |
| tenda | 4g08 | — | — |
| tenda | 4g08 | — | — |
| tenda | 4g08 | — | — |
| tenda | 4g08 | — | — |
| tenda | 4g08 | — | — |