Matthew Evans

**Name of the Vulnerable Software and Affected Versions** Tenda W18E version V16.01.0.8(1625) **Description** The issue concerns hardcoded credentials in the Tenda W18E device, allowing unauthenticated remote attackers to gain root access to the device over the telnet service. This enables attackers to access the device without proper authentication, potentially leading to unauthorized control and data breaches. **Recommendations** For Tenda W18E version V16.01.0.8(1625), consider disabling the telnet service until a patch is available to prevent exploitation of the hardcoded credentials. Additionally, restricting access to the device and implementing strong authentication mechanisms can help minimize the risk of unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W18E version 16.01.0.8(1625) **Description** The issue concerns an incorrect access control mechanism. It allows an unauthenticated remote attacker to change the administrator password through the web management portal by sending a specially crafted HTTP POST request to the `setLoginPassword` function, effectively bypassing the authentication mechanism. **Recommendations** For Tenda W18E version 16.01.0.8(1625), as a temporary workaround, consider restricting access to the `setLoginPassword` function until a patch is available. Additionally, limit access to the web management portal to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W18E version V16.01.0.8(1625) **Description** A default credentials vulnerability allows unauthenticated remote attackers to access the web management portal using the default `rzadmin` account with administrative privileges. **Recommendations** For Tenda W18E version V16.01.0.8(1625), consider changing the default `rzadmin` account credentials to prevent unauthorized access. As a temporary workaround, restrict access to the web management portal until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Tenda W18E version 16.01.0.8(1625) **Description** The issue concerns an authentication bypass in the web management portal, allowing an unauthorized remote attacker to gain administrative access by sending a specially crafted HTTP request. **Recommendations** For Tenda W18E version 16.01.0.8(1625), as a temporary workaround, consider restricting access to the web management portal until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.