CVE-2023-29680

CVSS V2 None CVSS V3 None

Description

Cleartext Transmission in set-cookie:ecos_pw: Tenda N301 v6.0, Firmware v12.02.01.61_multi allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

Overview

CVE ID
CVE-2023-29680

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-01T22:15:09

Last Modified Date
2023-05-01T22:15:09

References

Reference URL	Reference Tags
https://medium.com/@0ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62
https://www.youtube.com/watch?v=m7ZHfFcSKpU&ab_channel=0ta

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-29680
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29680

History

Created	Old Value	New Value	Data Type	Notes
2023-05-01 23:00:44				Added to TrackCVE