CVE-2018-25318— Tenda FH303/A300 V5.07.68_EN Cookie Session Weakness DNS Change
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-25318
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tenda FH303/A300 V5.07.68_EN Cookie Session Weakness DNS Change
Source: NVD (National Vulnerability Database)
Vulnerability Description
Tenda FH303/A300 firmware V5.07.68_EN contains a session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient cookie validation. Attackers can send GET requests to the /goform/AdvSetDns endpoint with a crafted admin cookie to change DNS servers and redirect user traffic to malicious sites.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用欺骗进行的认证绕过
Source: NVD (National Vulnerability Database)
Vulnerability Title
Tenda FH303和Tenda A300 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Tenda FH303和Tenda A300都是中国腾达(Tenda)公司的一款无线路由器。 Tenda FH303和Tenda A300 V5.07.68_EN版本存在安全漏洞,该漏洞源于会话弱点,可能导致未经身份验证的攻击者通过利用不充分的cookie验证修改DNS设置。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Tenda | FH303/A300 | 5.07.68 | - |
II. Public POCs for CVE-2018-25318
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-25318
Please Login to view more intelligence information
Same Patch Batch · Tenda · 2026-04-29 · 3 CVEs total
| CVE-2018-25317 | 9.8 CRITICAL | Tenda W3002R/A302/W309R V5.07.64_en Cookie Session Weakness DNS Change |
| CVE-2018-25316 | 9.8 CRITICAL | Tenda W308R v2 V5.07.48 Cookie Session Weakness DNS Change |
IV. Related Vulnerabilities
Same vendor: Tenda
- CVE-2026-8138
Tenda CX12L SetPptpServerCfg” formSetPPTPServer stack-based - CVE-2026-7470
Tenda 4G300 SafeMacFilter sub_427C3C stack-based overflow - CVE-2026-7469
Tenda 4G300 DelFil sub_425A28 command injection - CVE-2018-25317
Tenda W3002R/A302/W309R V5.07.64_en Cookie Session Weakness - CVE-2018-25316
Tenda W308R v2 V5.07.48 Cookie Session Weakness DNS Change
Same weakness: CWE-290
- CVE-2026-42354
Sentry: Improper authentication on SAML SSO process allows u - CVE-2026-44118
OpenClaw < 2026.4.22 - Owner Context Spoofing via Bearer Tok - CVE-2026-39858
Traefik: Forwarded alias spoofing top pre-auth decision bypa - CVE-2018-25317
Tenda W3002R/A302/W309R V5.07.64_en Cookie Session Weakness - CVE-2018-25316
Tenda W308R v2 V5.07.48 Cookie Session Weakness DNS Change
V. Comments for CVE-2018-25318
No comments yet