CVE-2015-5995

CRITICAL

Mediabridge Medialink MWN-WAPR300N/Tenda N3 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2015-5995. PoCs published by Mandeep Jadon, shaheemirza.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in Tenda N3 Wireless N150 routers by forging a static cookie value. The router uses a predictable cookie for authentication, allowing unauthorized access to the admin account without credentials.

Description

Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Cookie header.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Mandeep Jadon · textwebappshardware
https://www.exploit-db.com/exploits/41402

This exploit demonstrates an authentication bypass vulnerability in Tenda N3 Wireless N150 routers by forging a static cookie value. The router uses a predictable cookie for authentication, allowing unauthorized access to the admin account without credentials.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Tenda N3 Wireless N150 Routers
No auth needed
Prerequisites: Access to the router's web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 9 stars
by shaheemirza · poc
https://github.com/shaheemirza/TendaSpill

This PoC exploits CVE-2015-5995, an authentication bypass vulnerability in Tenda and Medialink routers, by sending a crafted HTTP request with an 'admin' substring in the Cookie header to extract administrative and WiFi passwords from the router's configuration file.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Tenda N3 Wireless N150 (firmware 5.07.50), Medialink MWN-WAPR300N (firmware 5.07.50)
No auth needed
Prerequisites: network access to the target device · target device must be vulnerable (specific firmware versions)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
https://www.kb.cert.org/vuls/id/630872

Scores

CVSS v3 9.8
EPSS 0.3820
EPSS Percentile 97.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-264
Status published
Products (2)
mediabridge/medialink_mwn-wapr300n_firmware < 5.07.50
tenda/n3_wireless_n150
Published Dec 31, 2015
Tracked Since Feb 18, 2026