An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.
The vulnerability affects the HTTP authentication mechanism in the device's firmware (CWE-288 β Authentication Bypass Using an Alternate Path or Channel). An attacker can send a specially crafted HTTP request that bypasses the required identity verification. Successfully bypassing authentication leads directly to the ability to execute arbitrary code on the device.
An attacker without any privileges can gain full control of the device by executing arbitrary code (RCE) β threatening the confidentiality, integrity and availability of the system and local network.
Security patches available from the manufacturer should be applied according to the references. Until an update is available, it is recommended to isolate the device's administrative panel from the public network and restrict access to the HTTP interface only to trusted hosts.
Tenda AC6 V5.0 with firmware V02.03.01.110
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTenda Ac6
HWTenda5.0Tenda Ac6 Firmware
OSTenda02.03.01.110
Related vulnerabilities
Buffer Overflow w Tenda AC6 β funkcja formSetCfm
Buffer overflow w Tenda AC6 β funkcja fromAddressNat
Buffer overflow w Tenda AC6 β funkcja formSetSpeedWan
Buffer overflow w Tenda AC6 β funkcja formWifiWpsOOB
Buffer overflow w Tenda AC6 β funkcja formexeCommand