CVE-2025-15371 | Tenda i24/4G03 Pro/4G05/4G08 3.0.0.8(4008)/04.03.01.49/04.05.01.15/04.08.01.28 Shadow File hard-coded credentials

Inserito da Angelo Barbosa | Dic 30, 2025 | CVE

A vulnerability categorized as critical has been discovered in Tenda i24, 4G03 Pro, 4G05 and 4G08 3.0.0.8(4008)/04.03.01.49/04.05.01.15/04.08.01.28. Affected is an unknown function of the component Shadow File. Such manipulation with the input Fireitup leads to hard-coded credentials.

This vulnerability is traded as CVE-2025-15371. An attack has to be approached locally. Furthermore, there is an exploit available.

CVE-2025-15371 | Tenda i24/4G03 Pro/4G05/4G08 3.0.0.8(4008)/04.03.01.49/04.05.01.15/04.08.01.28 Shadow File hard-coded credentials

Post correlati

CVE-2025-12817 | PostgreSQL up to 18.0 CREATE STATISTICS Command authorization

CVE-2025-24659 | Download Manager Premium Packages Plugin up to 5.9.6 on WordPress sql injection

CVE-2024-26629 | Linux Kernel up to 6.1.78/6.6.14/6.7.2/6.8-rc1 nfsd nfsd4_release_lockowner state issue

CVE-2024-43399 | MobSF Mobile-Security-Framework-MobSF up to 4.0.6 a Extension File path traversal