CVE-2025-52363 – Tenda CP3 Pro Root Password Hash Hardcoded Vulnerability

July 14, 2025

CVE ID : CVE-2025-52363

Published : July 14, 2025, 6:15 p.m. | 34 minutes ago

Description : Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtaining administrative access

Severity: 6.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53014 – ImageMagick Heap Buffer Overflow Vulnerability

Next Article CVE-2025-7626 – YiJiuSmile kkFileViewOfficeEdit Path Traversal Vulnerability

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Best React.js Development Services in 2025: Features, Benefits & What to Look For

August 2025: AI updates from the past month

UI automation: Why “try, try again”is your mantra

AI is returning to Taco Bell and McDonald’s drive-thrus – will customers bite this time?

I deciphered Apple’s iPhone 17 event invite – my 3 biggest theories for what’s expected

This Milwaukee 9-tool kit is $200 off for Labor Day – here’s what’s included

Massive TransUnion breach leaks personal data of 4.4 million customers – what to do now

Streamlining Application Automation with Laravel’s Task Scheduler

Streamlining Application Automation with Laravel’s Task Scheduler

A Fluent Path Builder for PHP and Laravel

Planning Sitecore Migration: Things to consider

From Novice to Pro: Mastering Lightweight Linux for Your Kubernetes Projects

From Novice to Pro: Mastering Lightweight Linux for Your Kubernetes Projects

Microsoft AI launches MAI-Voice-1 and previews MAI-1 foundation model

Clipchamp Tutorial: Cut and Split Videos Quickly

CVE-2025-52363 – Tenda CP3 Pro Root Password Hash Hardcoded Vulnerability

TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies

Ransomware Attack Hits Nevada: DMV, Health Authority Among Agencies Affected

CVE-2025-47766 – Apache Apache HTTP Server Unvalidated Redirect

After years of requests, Diablo 4’s Paladin might finally be on the horizon — here’s why fans think it’s happening

CVE-2025-4573 – Mattermost LDAP Group ID Attribute Injection Vulnerability

CVE-2025-53498 – Wikimedia Foundation Mediawiki AbuseFilter Extension Data Leakage Vulnerability

CVE-2025-27702 – Absolute Secure Access Privilege Escalation Vulnerability

CVE-2025-50062 – Oracle PeopleSoft Global Payroll Core HTTP Low Privilege Remote Unauthorized Access and Data Modification Vulnerability

Generative AI Use in Video Games Sparks ‘Heated Debates’

CVE-2025-9098 – “Elseplus File Recovery App Android Component Export Vulnerability”

CVE-2025-52363 – Tenda CP3 Pro Root Password Hash Hardcoded Vulnerability

Related Posts