Command Injection Vulnerability in Tenda RX2 Pro Web Management Portal
CVE-2025-46625

8.8HIGH

Key Information:

Vendor: Tenda
Status: Tenda RX2 Pro
Vendor: CVE Published:; 1 May 2025

Summary

This vulnerability arises from inadequate input validation and sanitization in the 'setLanCfg' API endpoint of Tenda RX2 Pro. It allows authorized remote attackers who have access to the web management portal to exploit this weakness by sending specially crafted web requests. Successful exploitation can lead to gaining root shell access on the device. The command injection persists because malicious commands are stored in the device's configuration, posing a long-term security risk.

References

https://www.tendacn.com/us/default.html

https://blog.uturn.dev/#/writeups/iot-village/tenda-rx2pr...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 1, 2025