← back
CVE-2014-5246

CVE-2014-5246

EPSS 12.5%
The Shenzhen Tenda Technology Tenda A5s router with firmware 3.02.05_CN allows remote attackers to bypass authentication and gain administrator access by setting the admin:language cookie to zh-cn.
Affected products
n/a · n/a
public PoCs found3
exploitdbwww.exploit-db.com/exploits/34361unverifiedcve_referencepacketstormsecurity.com/files/127905/Tenda-A5s-Router-Authentication-Bypass.htmlunverifiedcve_referencewww.exploit-db.com/exploits/34361unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/show/osvdb/110146http://packetstormsecurity.com/files/127905/Tenda-A5s-Router-Authentication-Bypass.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/95337http://www.exploit-db.com/exploits/34361http://www.securityfocus.com/bid/69267