Tenda Products Hard-Coded Credentials Vulnerability in Shadow File Component

Vulnerability

A hard-coded credentials vulnerability has been identified in multiple Tenda products, including the Tenda i24, 4G03 Pro, 4G05, 4G08, G0-8G-PoE, Nova MW5G, and TEG5328F, all through version 65.10.15.6. The vulnerability resides in the Shadow File component, where manipulation of the input 'Fireitup' exposes hard-coded credentials, allowing local attackers to gain root access. This issue requires a sophisticated level of execution, making it relatively challenging to exploit, although a public proof-of-concept is available.

Impact

Exploitation of this vulnerability allows local attackers to access hard-coded credentials in the Shadow File, which can be used to log in as root, thereby gaining unauthorized administrative privileges.

Added: Dec 31, 2025, 1:18 AM

Updated: Dec 31, 2025, 1:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.6

remediation

0.0

relevance

1.7

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.6

remediation

0.0

relevance

1.7

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda Products Hard-Coded Credentials Vulnerability in Shadow File Component

Vulnerability

Impact

Affected Products

Tenda i24

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating