Details of VAR-202108-2321

ID

VAR-202108-2321

TITLE

Tenda Roteador Multilaser 1200AC device has unauthorized access vulnerability

Trust: 0.6

sources: CNVD: CNVD-2021-46852

DESCRIPTION

Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating independent research and development, production and sales of network equipment. The Tenda Roteador Multilaser 1200AC device has an unauthorized access vulnerability. Attackers can use the vulnerability to access the device management page to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-46852

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-46852

AFFECTED PRODUCTS

vendor:

jixiang tengda

model:

roteador multilaser 1200ac v02.03.01.45 pt

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-46852

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-46852
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-46852
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-46852

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-46852

Trust: 0.6

sources: CNVD: CNVD-2021-46852

SOURCES

db:

CNVD

id:

CNVD-2021-46852

LAST UPDATE DATE

2022-05-04T09:15:18.952000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-46852

date:

2021-07-03T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-46852

date:

2021-08-05T00:00:00