CVE-2025-46634 – Tenda RX2 Pro Password Hash Replay Vulnerability

May 1, 2025

CVE ID : CVE-2025-46634

Published : May 1, 2025, 8:15 p.m. | 3 hours, 12 minutes ago

Description : Cleartext transmission of sensitive information in the web management portal of the Tenda RX2 Pro 16.03.30.14 may allow an unauthenticated attacker to authenticate to the web management portal by collecting credentials from observed/collected traffic. It implements encryption, but not until after the user has transmitted the hash of their password in cleartext. The hash can be replayed to authenticate.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46635 – Tenda RX2 Pro Router Guest Wi-Fi Network Isolation Bypass

Next Article CVE-2025-46632 – Tenda RX2 Pro Cryptographic IV Reuse Vulnerability

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Sam Altman says OpenAI could need a “significant fraction” of the Earth’s power for future artificial intelligence computing

Microsoft’s Windows 95 testing phase was so intense that it crashed cash registers with over $10,000 worth of software

The biggest rival for Microsoft’s Xbox Ally is Valve’s Steam Deck, not Switch 2, so stop comparing the wrong gaming handhelds

Microsoft Copilot for Power Platform

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

Mastering TypeScript: Your Ultimate Guide to Types, Inference & Compatibility

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Sam Altman says OpenAI could need a “significant fraction” of the Earth’s power for future artificial intelligence computing

Microsoft’s Windows 95 testing phase was so intense that it crashed cash registers with over $10,000 worth of software

CVE-2025-46634 – Tenda RX2 Pro Password Hash Replay Vulnerability

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Linux-lek geeft aanvaller roottoegang: “organisaties moeten meteen patchen”

Rilasciata Arch Linux Enhance Xenial (ALEX) aggiornata a maggio 2025

Top Cryptocurrency Trends to Watch in 2025

CVE-2023-51756 – Apache HTTP Server Cross-Site Scripting

Gemini Robotics brings AI into the physical world

CVE-2025-5277 – Amazon Web Services (AWS) MCP-Server Command Injection Vulnerability

How to make Developer Friends When You Don’t Live in Silicon Valley, with Iraqi Engineer Code;Life [Podcast #172]

Raspberry Pi 5 Desktop Mini PC: Benchmarking

Distribution Release: Clonezilla Live 3.2.1-28

CVE-2025-46634 – Tenda RX2 Pro Password Hash Replay Vulnerability

Related Posts