CVE Catalog

CVE-2018-25318

Critical
Published: Translated: NVD NIST

Summary

Tenda FH303/A300 firmware V5.07.68_EN contains a session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient cookie validation. Attackers can send GET requests to the /goform/AdvSetDns endpoint with a crafted admin cookie to change DNS servers and redirect user traffic to malicious sites.

Risk Assessment

This vulnerability poses a risk of redirecting user traffic to malicious sites, potentially leading to data theft or malware infection. Organizations should be aware of the potential threats associated with unauthorized access to DNS settings.

Recommendation

It is recommended to update the firmware to the latest version that addresses this vulnerability. Additionally, implementing stronger authentication mechanisms and monitoring network traffic is advisable.

Original NVD description (English source)

Tenda FH303/A300 firmware V5.07.68_EN contains a session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient cookie validation. Attackers can send GET requests to the /goform/AdvSetDns endpoint with a crafted admin cookie to change DNS servers and redirect user traffic to malicious sites.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS