CVE-2023-29680

Cleartext Transmission in set-cookie:ecos_pw: Tenda N301 v6.0, Firmware v12.02.01.61_multi allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tenda:n301_firmware:12.03.01.06_pt:*:*:*:*:*:*:*
cpe:2.3:h:tenda:n301:6.0:*:*:*:*:*:*:*

History

07 Nov 2023, 04:11

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@0ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62', 'name': 'https://medium.com/@0ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62', 'tags': ['Exploit'], 'refsource': 'MISC'}
  • () https://medium.com/%400ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62 -

09 May 2023, 16:29

Type Values Removed Values Added
References (MISC) https://www.youtube.com/watch?v=m7ZHfFcSKpU&ab_channel=0ta - (MISC) https://www.youtube.com/watch?v=m7ZHfFcSKpU&ab_channel=0ta - Exploit
References (MISC) https://medium.com/@0ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62 - (MISC) https://medium.com/@0ta/tenda-n301-v6-cve-2023-29680-cve-2023-29681-a40f7ae6dc62 - Exploit
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.7
CWE CWE-319
CPE cpe:2.3:h:tenda:n301:6.0:*:*:*:*:*:*:*
cpe:2.3:o:tenda:n301_firmware:12.03.01.06_pt:*:*:*:*:*:*:*
First Time Tenda
Tenda n301 Firmware
Tenda n301

01 May 2023, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-05-01 22:15

Updated : 2023-12-10 15:01


NVD link : CVE-2023-29680

Mitre link : CVE-2023-29680

CVE.ORG link : CVE-2023-29680


JSON object : View

Products Affected

tenda

  • n301_firmware
  • n301
CWE
CWE-319

Cleartext Transmission of Sensitive Information