PulseAugur
EN
LIVE 19:15:48

Tenda routers vulnerable to unpatched admin backdoor, researchers warn

A critical firmware vulnerability in several Tenda router models allows unauthorized administrative access without a password. Cybersecurity researchers at Carnegie Mellon University's CERT Coordination Center disclosed the flaw, tracked as CVE-2026-11405, which bypasses standard authentication. Tenda has not yet released a patch or responded to warnings, leaving users exposed to potential network compromise. AI

IMPACT Exposes users to potential network compromise due to an unpatched firmware vulnerability.

RANK_REASON Disclosure of a security vulnerability in a consumer product.

Read on Tom's Hardware →

AI-generated summary · Google Gemini · from 1 sources. How we write summaries →

Tenda routers vulnerable to unpatched admin backdoor, researchers warn

COVERAGE [1]

  1. Tom's Hardware TIER_1 English(EN) · Etiido Uko ·

    Hidden backdoor in Tenda routers goes unpatched as company ignores warnings from cybersecurity researchers — Chinese company's firmware allows admin access without a password

    CERT/CC has disclosed a critical authentication backdoor affecting multiple Tenda router firmware versions. Tracked as CVE-2026-11405, the flaw grants full administrator access without valid credentials, and no vendor patch is currently available after CERT failed to reach Tenda.