Tenda CP3 Remote Root Access

CVE Number

CVE-2023-30351

Summary

It is possible to access a root console of the Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 by exploiting hardcoded and weak access credentials.

Tested Versions

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355

Product URLs

Vendor Website

CVSSv3 Score

TBA

CWE

CWE-798: Use of Hard-coded Credentials

Details

By using weak credentials (reversed from the content of the shadow file found in the camera fs) it is possible to access a root shell on the Tenda CP3 IP Camera via telnet.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

tmp_RRA.md

tmp_RRA.md

Tenda CP3 Remote Root Access

CVE Number

Summary

Tested Versions

Product URLs

CVSSv3 Score

CWE

Details

Files

tmp_RRA.md

Latest commit

History

tmp_RRA.md

File metadata and controls

Tenda CP3 Remote Root Access

CVE Number

Summary

Tested Versions

Product URLs

CVSSv3 Score

CWE

Details