W30E_HardCode_vuln

Overview

Product: Tenda W30Ev2.0
Hardware Version: v2.0
Manufacturer's website information
- https://www.tendacn.com/
Firmware download website:
- https://www.tendacn.com/hk/download/detail-3201.html

Affected version

V16.01.0.8

Vulnerability description

Tenda W30Ev2.0 V16.01.0.8 was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

Additional Information

###Product_version
W30Ev2.0 
****V16.01.0.8

###Affected_component
/etc_ro/shadow

###Attack_vector
The root password obtained from /etc_ro/shadow can be used for unauthorized root login.

###Discription
Tenda W30Ev2.0 V16.01.0.8 was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

###Refernce
<https://colorful-meadow-5b9.notion.site/W30E_HardCode_vuln-13dc216a1c30805998f8d994f966760a>
[<https://www.tendacn.com/hk/download/detail-3201.html>](<https://www.tendacn.com/hk/download/detail-4589.html>)

after decrypt the passwd we got Fireitup