{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/97146?format=json","vulnerability_id":"VCID-2ps5-qy1j-mqds","summary":"An issue was discovered on Tenda RX2 Pro 16.03.30.14 devices. Improper network isolation between the guest Wi-Fi network and other network interfaces on the router allows an attacker (who is authenticated to the guest Wi-Fi) to access resources on the router and/or resources and devices on other networks hosted by the router by configuring a static IP address (within the non-guest subnet) on their host.","aliases":[{"alias":"CVE-2025-46635"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-46635","reference_id":"","reference_type":"","scores":[{"value":"0.00255","scoring_system":"epss","scoring_elements":"0.49211","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00255","scoring_system":"epss","scoring_elements":"0.49349","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51252","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51264","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-46635"},{"reference_url":"https://www.tendacn.com/us/default.html","reference_id":"default.html","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T14:41:44Z/"}],"url":"https://www.tendacn.com/us/default.html"},{"reference_url":"https://blog.uturn.dev/#/writeups/iot-village/tenda-w18e/README?id=cve-2024-46435-delfacebookpic-stack-overflow","reference_id":"README?id=cve-2024-46435-delfacebookpic-stack-overflow","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-02T14:41:44Z/"}],"url":"https://blog.uturn.dev/#/writeups/iot-village/tenda-w18e/README?id=cve-2024-46435-delfacebookpic-stack-overflow"}],"weaknesses":[],"exploits":[],"severity_range_score":"7.1 - 7.1","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2ps5-qy1j-mqds"}