CVE-2025-70798 | THREATINT

Description

Tenda i24V3.0si V3.0.0.5 Firmware V3.0.0.5 was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

PUBLISHED Reserved 2026-01-09 | Published 2026-03-10 | Updated 2026-03-12 | Assigner mitre

References

github.com/...blob/main/Tenda/i24V3.0si_V3.0.0.5/report-1.md exploit

www.tendacn.com/

github.com/...blob/main/Tenda/i24V3.0si_V3.0.0.5/report-1.md

cve.org (CVE-2025-70798)

nvd.nist.gov (CVE-2025-70798)

Download JSON