Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
Tenda 4G03 Pro Routers Use Hard-Coded Encryption Key
CVE-2026-5527
Summary
Some Tenda 4G03 Pro routers have a security weakness that allows an attacker to access sensitive information. This is because the routers use a hard-coded encryption key, which is not changed by the manufacturer. To fix this issue, you should update the router's firmware to the latest version, which is expected to include a new encryption key.
Original title
A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 ...
Original description
A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key
. It is possible to initiate the attack remotely.
. It is possible to initiate the attack remotely.
nvd CVSS2.0
5.0
nvd CVSS3.1
5.3
nvd CVSS4.0
5.5
Vulnerability type
CWE-320
CWE-321
Use of Hard-coded Cryptographic Key
Published: 5 Apr 2026 · Updated: 5 Apr 2026 · First seen: 5 Apr 2026