CVE-2025-46628 – Tenda RX2 Pro Remote Root Shell Access Vulnerability

May 1, 2025

CVE ID : CVE-2025-46628

Published : May 1, 2025, 8:15 p.m. | 3 hours, 12 minutes ago

Description : Lack of input validation/sanitization in the ‘ate’ management service in the Tenda RX2 Pro 16.03.30.14 allows an unauthorized remote attacker to gain root shell access to the device by sending a crafted UDP packet to the ‘ate’ service when it is enabled. Authentication is not needed.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46630 – Tenda RX2 Pro Remote Command Execution Vulnerability

Next Article CVE-2025-46627 – Tenda RX2 Pro Weak Credential Vulnerability

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-46628 – Tenda RX2 Pro Remote Root Shell Access Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

I love my XREAL AR glasses, but I have a cheaper alternative you should try — similar features but cost over $70 less

Oxford City Council Cyberattack Disrupts Services and Exposes Historic Election Data

CVE-2025-5363 – Campcodes Online Hospital Management System SQL Injection Vulnerability

Apple Loses Dismissal Bid: Judge Forces iPhone Antitrust Lawsuit to Proceed

CVE-2025-7357 – LITEON IC48A/IC80A FTP Server Cleartext Credentials Storage Vulnerability

CVE-2025-6248 – Lenovo Browser Cross-Site Scripting Vulnerability

ServiceNow Platform Vulnerability Let Attackers Exfiltrate Sensitive Data

CVE-2025-20694 – Intel Bluetooth Denial of Service Vulnerability

CVE-2025-46628 – Tenda RX2 Pro Remote Root Shell Access Vulnerability

Related Posts