Multiple vulnerabilities have been found in Tenda PA6 Wi-Fi Powerline extender, version 1.0.1.21.21. This device is part of Tendas PH5 Powerline Extender Kit and extends the wireless network through electrical circuitry. The kit aligns with the HomePlug AV2 technology and provides wired speeds up to 1000Mbps. A compromised device can become part of an internet of things (IoT) botnet that launches distributed denial-of-service (DDoS) attacks, used to pivot to other connected devices.”]
Source: https://securityintelligence.com/posts/vulnerable-powerline-extenders-underline-lax-iot-security/