Tenda AC18 Samba smb.conf weak password

July 26, 2025 invoker category_cve

CVE Details

Basic Information

Title Tenda AC18 Samba smb.conf weak password
Type cve
Published 2025-07-26T08:32:09.147Z
Modified 2025-07-26T08:32:09.147Z

Product Information

Vendor Tenda
Product AC18
Version 15.03.05.19

CVSS Information

Base Score 6.3 (MEDIUM)
Attack Vector CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

AI Analysis

AI Description A vulnerability in the Tenda AC18 router’s Samba configuration allows weak password requirements, which can be exploited remotely. However, the attack is considered difficult.
AI Severity Medium
AI Vendor Tenda
AI Product AC18
AI Version 15.03.05.19

Affected Products

  • Tenda AC18 15.03.05.19

Additional Information

CWE List CWE-521
Source VulDB

Description

A vulnerability has been found in Tenda AC18 15.03.05.19 and classified as problematic. This vulnerability affects unknown code of the file /etc_ro/smb.conf of the component Samba. The manipulation leads to weak password requirements. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.