CVE-2023-29681

CVSS V2 None CVSS V3 None

Description

Cleartext Transmission in cookie:ecos_pw: in Tenda N301 v6.0, firmware v12.03.01.06_pt allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

Overview

CVE ID
CVE-2023-29681

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-01T22:15:09

Last Modified Date
2023-05-01T22:15:09

References

Reference URL	Reference Tags
https://medium.com/@0ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62
https://www.youtube.com/watch?v=Xy9_hmpvvA4&ab_channel=0ta

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-29681
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29681

History

Created	Old Value	New Value	Data Type	Notes
2023-05-01 23:00:44				Added to TrackCVE