CVE-2025-46626

Published May 1, 2025

Last updated 22 days ago

Overview

Description
Reuse of a static AES key and initialization vector for encrypted traffic to the 'ate' management service of the Tenda RX2 Pro 16.03.30.14 allows an attacker to decrypt, replay, and/or forge traffic to the service.
Source
cve@mitre.org
NVD status
Awaiting Analysis

Social media

Hype score
Not currently trending

  1. CVE-2025-46626 Reuse of a static AES key and initialization vector for encrypted traffic to the 'ate' management service of the Tenda RX2 Pro 16.03.30.14 allows an attacker to decry… https://t.co/RNp8Aoahw9

    @CVEnew

    3 May 2025

    408 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.