A critical firmware vulnerability in several Tenda router models allows unauthorized administrative access without a password. Cybersecurity researchers at Carnegie Mellon University's CERT Coordination Center disclosed the flaw, tracked as CVE-2026-11405, which bypasses standard authentication. Tenda has not yet released a patch or responded to warnings, leaving users exposed to potential network compromise. AI
IMPACT Exposes users to potential network compromise due to an unpatched firmware vulnerability.
RANK_REASON Disclosure of a security vulnerability in a consumer product.
- AC10
- ADCY5
- ADCY6
- Carnegie Mellon University
- CERT Coordination Center
- CVE-2026-11405
- FH1201
- India
- Software Engineering Institute
- W15EB-D
AI-generated summary · Google Gemini · from 1 sources. How we write summaries →