VYPR

Cp3 Firmware

by Tenda

CVEs (3)

  • CVE-2025-5763MedJun 6, 2025
    risk 0.31cvss 4.7epss 0.05

    A vulnerability has been found in Tenda CP3 11.10.00.2311090948 and classified as critical. Affected by this vulnerability is the function sub_F3C8C of the file apollo. The manipulation leads to command injection. The attack can be launched remotely. The exploit has been…

  • CVE-2025-52363Jul 14, 2025
    risk 0.00cvss epss 0.00

    Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/passwd file and /etc/passwd-. An attacker with access to the firmware image can extract and attempt to crack the root password hash, potentially obtaining administrative access

  • CVE-2025-52364Jul 9, 2025
    risk 0.00cvss epss 0.01

    Insecure Permissions vulnerability in Tenda CP3 Pro Firmware V22.5.4.93 allows the telnet service (telnetd) by default at boot via the initialization script /etc/init.d/eth.sh. This allows remote attackers to connect to the device s shell over the network, potentially without…