{"vulnerability": "cve-2025-4662", "sightings": [{"uuid": "bb009c11-6439-4fbc-81c2-1726b348ff80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46627", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cpopkn22o", "content": "", "creation_timestamp": "2025-05-01T22:01:01.209675Z"}, {"uuid": "b03c1b7c-2a30-48c8-acfc-06d19fb5ffd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46628", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cpp7q6w2r", "content": "", "creation_timestamp": "2025-05-01T22:01:03.257096Z"}, {"uuid": "20bf170d-c1a1-4711-a110-1653b83a9dab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46626", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cppglqz2h", "content": "", "creation_timestamp": "2025-05-01T22:01:04.472848Z"}, {"uuid": "e0a3b03b-d9d1-4372-8ea1-8df813062fa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46629", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cppjzcs2o", "content": "", "creation_timestamp": "2025-05-01T22:01:05.054531Z"}, {"uuid": "45ef03c6-abb4-4105-ba81-f9361513a769", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46625", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cpttur72p", "content": "", "creation_timestamp": "2025-05-01T22:01:11.446613Z"}, {"uuid": "b9579553-c17e-4076-98e6-40dfefa9226a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46625", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14488", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46625\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Lack of input validation/sanitization in the 'setLanCfg' API endpoint in httpd in the Tenda RX2 Pro 16.03.30.14 allows a remote attacker that is authorized to the web management portal to gain root shell access to the device by sending a crafted web request. This is persistent because the command injection is saved in the configuration of the device.\n\ud83d\udccf Published: 2025-05-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-02T13:06:24.956Z\n\ud83d\udd17 References:\n1. https://www.tendacn.com/us/default.html\n2. https://blog.uturn.dev/#/writeups/iot-village/tenda-rx2pro/README?id=cve-2025-46625-command-injection-through-setlancfg-in-httpd", "creation_timestamp": "2025-05-02T14:15:54.000000Z"}, {"uuid": "1820d949-44c3-424c-abca-330afe61b9b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46625", "type": "seen", "source": "https://t.me/cvedetector/24268", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46625 - Tenda RX2 Pro HTTPd Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46625 \nPublished : May 1, 2025, 8:15 p.m. | 20\u00a0minutes ago \nDescription : Lack of input validation/sanitization in the 'setLanCfg' API endpoint in httpd in the Tenda RX2 Pro 16.03.30.14 allows a remote attacker that is authorized to the web management portal to gain root shell access to the device by sending a crafted web request. This is persistent because the command injection is saved in the configuration of the device. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T23:12:36.000000Z"}, {"uuid": "25fda4a5-3b94-4ba4-bc31-2417e69c93c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46626", "type": "seen", "source": "https://t.me/cvedetector/24269", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46626 - Tenda RX2 Pro AES Key Reuse Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46626 \nPublished : May 1, 2025, 8:15 p.m. | 20\u00a0minutes ago \nDescription : Reuse of a static AES key and initialization vector for encrypted traffic to the 'ate' management service of the Tenda RX2 Pro 16.03.30.14 allows an attacker to decrypt, replay, and/or forge traffic to the service. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T23:12:37.000000Z"}, {"uuid": "f78a61d0-5ec9-4666-9adc-d6984ffe03ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46627", "type": "seen", "source": "https://t.me/cvedetector/24270", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46627 - Tenda RX2 Pro Weak Credential Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46627 \nPublished : May 1, 2025, 8:15 p.m. | 20\u00a0minutes ago \nDescription : Use of weak credentials in the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated attacker to authenticate to the telnet service by calculating the root password based on easily-obtained device information. The password is based on the last two digits/octets of the MAC address. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T23:12:38.000000Z"}, {"uuid": "a6d17ff7-870f-4a8a-822d-4803775e78d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46628", "type": "seen", "source": "https://t.me/cvedetector/24271", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46628 - Tenda RX2 Pro Remote Root Shell Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-46628 \nPublished : May 1, 2025, 8:15 p.m. | 20\u00a0minutes ago \nDescription : Lack of input validation/sanitization in the 'ate' management service in the Tenda RX2 Pro 16.03.30.14 allows an unauthorized remote attacker to gain root shell access to the device by sending a crafted UDP packet to the 'ate' service when it is enabled. Authentication is not needed. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T23:12:39.000000Z"}, {"uuid": "1f551fd5-f74f-4ae3-8737-5253db78ec4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46629", "type": "seen", "source": "https://t.me/cvedetector/24272", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-46629 - Tenda RX2 Pro Remote Access Control Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-46629 \nPublished : May 1, 2025, 8:15 p.m. | 20\u00a0minutes ago \nDescription : Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where 'ate' has been enabled by sending a crafted UDP packet \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T23:12:39.000000Z"}]}