Tenda 300Mbps Wireless Router F3
Moderate fix1 remedy
cpe:2.3:h:tenda:f3:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- V12.01.01.41
- V12.01.01.42
- V12.01.01.48
- V12.01.01.52
- V12.01.01.55
- V03.03.01.40
Tenda Wireless Routers Insecure Transmission of Credentials Vulnerability
Vulnerability
Patched
A vulnerability exists in Tenda wireless routers, specifically the 300Mbps Wireless Router F3 and the N300 Easy Setup Router, due to the transmission of credentials encoded in reversible Base64 through the web-based administrative interface. This flaw allows an attacker on the same network to intercept and decode the Base64-encoded credentials, potentially leading to unauthorized access to the device.
Impact
Exploitation of this vulnerability could result in the unauthorized access to the affected router, allowing an attacker to compromise sensitive configuration information.
Remediation
Users are advised to apply the updates mentioned by the vendor. For more information, visit the Tenda India website.
Added: Jan 9, 2026, 11:18 AM
Updated: Jan 9, 2026, 11:18 AM
Vulnerability Rating
Custom Algorithm
spread
6.8impact
1.3exploitability
4.5remediation
7.7relevance
2.0threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.