Sign-up

ID

VAR-202511-0848


CVE

CVE-2025-63666


DESCRIPTION

Tenda AC15 v15.03.05.18_multi) issues an authentication cookie that exposes the account password hash to the client and uses a short, low-entropy suffix as the session identifier. An attacker with network access or the ability to run JS in a victim browser can steal the cookie and replay it to access protected resources.

Trust: 1.0

sources: NVD: CVE-2025-63666

AFFECTED PRODUCTS

vendor:tendamodel:ac15scope:eqversion:15.03.05.18

Trust: 1.0

sources: NVD: CVE-2025-63666

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2025-63666
value: CRITICAL

Trust: 1.0

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2025-63666
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: NVD: CVE-2025-63666

PROBLEMTYPE DATA

problemtype:CWE-284

Trust: 1.0

sources: NVD: CVE-2025-63666

EXTERNAL IDS

db:NVDid:CVE-2025-63666

Trust: 1.0

sources: NVD: CVE-2025-63666

REFERENCES

url:https://github.com/remenis/cve-2025-63666

Trust: 1.0

sources: NVD: CVE-2025-63666

SOURCES

db:NVDid:CVE-2025-63666

LAST UPDATE DATE

2025-11-19T23:24:55.063000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2025-63666date:2025-11-17T18:59:20.080

SOURCES RELEASE DATE

db:NVDid:CVE-2025-63666date:2025-11-12T15:15:38.583