{"uuid": "b89afd1a-9a04-4832-9cb7-1f7633c6aaac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/9426", "content": "\ud83d\uded1 WARNING - Several Tenda firmware builds embed an undocumented auth backdoor in /bin/httpd.\n\nCVE-2026-11405 checks sys.rzadmin.password after normal login fails. If the supplied password matches, it creates an admin session.\n\nStill unpatched.\n\nRead: https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "creation_timestamp": "2026-07-16T00:00:19.631795Z"}