Vulnerability Details CVE-2025-46629
Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where 'ate' has been enabled by sending a crafted UDP packet
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.3%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-46629
-
cpe:2.3:h:tenda:rx2_pro:-
-
cpe:2.3:o:tenda:rx2_pro_firmware:16.03.30.14