CVE-2025-46629 – Tenda RX2 Pro Remote Access Control Bypass

May 1, 2025

CVE ID : CVE-2025-46629

Published : May 1, 2025, 8:15 p.m. | 3 hours, 12 minutes ago

Description : Lack of access controls in the ‘ate’ management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where ‘ate’ has been enabled by sending a crafted UDP packet

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46633 – Tenda RX2 Pro Information Leak

Next Article CVE-2025-46630 – Tenda RX2 Pro Remote Command Execution Vulnerability

Highlights

CVE-2025-5961 – NGINX WordPress Plugin WPvivid Backup & Migration Arbitrary File Upload Vulnerability

July 3, 2025

CVE ID : CVE-2025-5961

Published : July 3, 2025, 2:15 p.m. | 41 minutes ago

Description : The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ‘wpvivid_upload_import_files’ function in all versions up to, and including, 0.9.116. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site’s server which may make remote code execution possible. NOTE: Uploaded files are only accessible on WordPress instances running on the NGINX web server as the existing .htaccess within the target file upload folder prevents access on Apache servers.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

8 Top AI Agent Development Companies Transforming Node.js Automation (2025–2026 Edition)

Representative Line: Reduced to a Union

Functional Personas With AI: A Lean, Practical Workflow

Vibe Coding vs React.js AI-Assisted Coding: A C-Suite Comparison (2025)

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

Development Release: Fedora 43 Beta

Distribution Release: Murena 3.1.1

Shopping Portal using Python Django & MySQL

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

What is Microsoft Copilot?

Distribution Release: Mauna Linux 25

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

Development Release: Fedora 43 Beta

CVE-2025-46629 – Tenda RX2 Pro Remote Access Control Bypass

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Creepy Morning

How to install Flow — IoT platform

Stellar Blade Launches June 11, But Here’s Why It Is a Must-Play

CVE-2025-6615 – D-Link DIR-619L Stack-Based Buffer Overflow Vulnerability

CVE-2025-5961 – NGINX WordPress Plugin WPvivid Backup & Migration Arbitrary File Upload Vulnerability

The best fonts for small text: our pick

CVE-2025-41649 – Cisco Craft Router Buffer Overflow Vulnerability

How to Test a Website || A Total Guide of Website Penetration Testing

CVE-2025-46629 – Tenda RX2 Pro Remote Access Control Bypass

Related Posts