Undocumented Backdoor in Tenda Firmware Enables Admin Access Without Patch
CVE-2026-11405 allows authentication bypass on Tenda routers and networking devices via hardcoded backdoor password; vendor coordination failed and no patch available.
Attack Brief
TargetTenda routers, switches, and networking devicesVectorAuthentication bypass via undocumented backdoor in web server login functionAttributionresearcher disclosure
Technical Details
CVE IDsCVE-2026-11405MITRE ATT&CKT1078T1199AffectedMultiple Tenda firmware versions (unspecified)
Impact
Confirmed DamageAttacker can modify device configurations, network settings, and disable security features; local network compromise possible
Mitigation
WorkaroundsDisable remote web management interface; change default LAN IP address to reduce automated scanner discovery
Source
https://www.securityweek.com/unpatched-backdoor-in-tenda-firmware-grants-admin-access-to-devices/by CERT Coordination Center (CERT/CC)on 2026-07-09T00:00:00Z2 sources