Tenda G1V3.1si Router Has Hardcoded Admin Password

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.4

Tenda G1V3.1si Router Has Hardcoded Admin Password

CVE-2025-70802

Summary

The Tenda G1V3.1si router's password is hardcoded, allowing unauthorized access to the admin account. This makes it easy for attackers to gain control of the router. Update to the latest firmware to resolve this issue.

Original title

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

Original description

Tenda G1V3.1si V16.01.7.8 Firmware V16.01.7.8 was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

Vulnerability type

CWE-259

https://github.com/vuln-1/vuln/blob/main/Tenda/G1V3.1si_V16.01.7.8/report-1.md
https://www.tendacn.com/

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026