216.73.217.173

CVE-2026-22080

· Published 09/01/2026 11:15 · Modified 09/01/2026 11:15

Labels: CVE-2026-22080 2026-01-09CVE-2026-22080CWE-319[email protected]

Essential information

Published
09/01/2026 11:15
Modified
09/01/2026 11:15
Author
Creator
CVSS
8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup Router) due to the transmission of credentials encoded using reversible Base64 encoding through the web-based administrative interface. An attacker on the same network could exploit this vulnerability by intercepting network traffic and capturing the Base64-encoded credentials. Successful exploitation of this vulnerability could allow the attacker to obtain sensitive information and gain unauthorized access to the targeted device.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
tenda / 300mbps wireless router f3 cpe:2.3:a:tenda:300mbps_wireless_router_f3:*:*:*:*:*:*:*:*
tenda / n300 easy setup router cpe:2.3:a:tenda:n300_easy_setup_router:*:*:*:*:*:*:*:*

References