CVE-2018-5770

An issue was discovered on Tenda AC15 devices. A remote, unauthenticated attacker can make a request to /goform/telnet, creating a telnetd service on the device. This service is password protected; however, several default accounts exist on the device that are root accounts, which can be used to log in.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tendacn:ac15_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac15:-:*:*:*:*:*:*:*

Information

Published : 2018-03-20 08:29

Updated : 2019-10-02 17:03


NVD link : CVE-2018-5770

Mitre link : CVE-2018-5770


JSON object : View

CWE
CWE-1188

Insecure Default Initialization of Resource

Advertisement

dedicated server usa

Products Affected

tendacn

  • ac15
  • ac15_firmware