CVE-2025-9806 | Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20 Administrative Interface /etc_ro/shadow hard-coded credentials

September 1, 2025 Yanac

A vulnerability has been found in Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20 and classified as problematic. Impacted is an unknown function of the file /etc_ro/shadow of the component Administrative Interface. This manipulation with the input Fireitup causes hard-coded credentials.

The identification of this vulnerability is CVE-2025-9806. The attack can only be executed locally. Furthermore, there is an exploit available.VulDB Recent EntriesRead More