Tenda customers should update their routers as soon as possible and monitor for reports of the possible exploit.

Android device security update

Tenda mobile routers come with a number of security features that help protect users from potential threats.
However, it was recently discovered that one of the router’s default usernames and passwords can be easily exploited by a malicious person to gain control of the device.
The vulnerability allows an attacker to access all data on the device without needing any additional credentials. This is a critical security flaw for Tenda routers that should be patched as soon as possible.
To avoid this vulnerability, there are two solutions: 1) Change your username and password - 2) Update your software file to the latest version

Recommendations

The first recommendation is to update your Tenda router to the latest firmware. The following methods are available for updating your Tenda router:

- Go to the website of Tenda, https://www.tenda.com/en/support
- Check the latest firmware on their website
- Contact Tenda support team
- Call Tenda customer service phone number
- Chat with us at our official Facebook page: https://www.facebook.com/TendaFansPage
If you have any questions about the vulnerability, please contact our technical support group through email: security@tendacn.com

What is the Tenda N300?

The Tenda N300 is a wireless Internet router that provides high-speed Wi-Fi connectivity.

Tenda N-Gage routers have been affected by CVE-2022-42167

The vulnerability in Tenda routers has been found to affect all models, including the N-Gage model. The vulnerability, CVE-2022-42167, allows an attacker who is on the same network as a victim to execute arbitrary code and take full control of their devices. This exploit is being referred to as “Tenda N-Gage router remote code execution” or “CVE-2022-42167.” It was discovered by researchers from Cisco Talos. The vulnerability was originally thought to be present in a version of Android running on the affected devices, but it has now been found that no Android version is at fault.

Timeline

Published on: 10/17/2022 14:15:00 UTC
Last modified on: 10/19/2022 15:07:00 UTC

References