CVE-2026-1610

EUVD-2026-4968
A vulnerability was found in Tenda AX12 Pro V2 16.03.49.24_cn. Affected by this issue is some unknown functionality of the component Telnet Service. Performing a manipulation results in hard-coded credentials. The attack is possible to be carried out remotely. A high degree of complexity is needed for the attack. The exploitation is known to be difficult. The exploit has been made public and could be used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.1 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
tendaax12_pro_firmware
16.03.49.24_cn:_cn
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/QIU-DIE/CVE/issues/49
https://vuldb.com/?ctiid.343378
https://vuldb.com/?id.343378
https://vuldb.com/?submit.740766
https://www.tenda.com.cn/