CVE-2025-46634 – Tenda RX2 Pro Password Hash Replay Vulnerability

May 1, 2025

CVE ID : CVE-2025-46634

Published : May 1, 2025, 8:15 p.m. | 3 hours, 12 minutes ago

Description : Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an unauthenticated attacker to authenticate to the web management portal by collecting credentials from observed/collected traffic. It implements encryption, but not until after the user has transmitted the hash of their password in cleartext. The hash can be replayed to authenticate.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46635 – Tenda RX2 Pro Router Guest Wi-Fi Network Isolation Bypass

Next Article CVE-2025-46632 – Tenda RX2 Pro Cryptographic IV Reuse Vulnerability

IBM launches new integration to help unify AI security and governance

Meet Accessible UX Research, A Brand-New Smashing Book

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

Sam Altman claims Meta is trying to poach OpenAI staffers with $100 million bonuses, but “none of our best people have decided to take them up on that”

Why Inclusive Design Solutions Are important for Accessibility

Why Inclusive Design Solutions Are important for Accessibility

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

CVE-2025-46634 – Tenda RX2 Pro Password Hash Replay Vulnerability

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Critical Auth Bypass Vulnerability (CVE-2025-51381) Found in KAON KCM3100 Gateways

CVE-2025-4278 – GitLab CE/EE HTML Injection Vulnerability

Bill Gates says, “We weren’t born to do jobs. AI will replace humans for most things.”

Mastering Modern Monorepo Development with pnpm, Workspaces

Windows 11’s Start menu redesign almost covers the full screen, but you can disable it

Integrating Design And Code With Native Design Tokens In Penpot

Mapping the misuse of generative AI

How to Deploy Laravel Projects to Live Server: The Ultimate Guide

CVE-2025-46611 – ARTEC EMA Mail Cross Site Scripting Vulnerability

CVE-2025-46634 – Tenda RX2 Pro Password Hash Replay Vulnerability

Related Posts