CVE-2024-32293

CWE-121Stack-based Buffer Overflow4 documents4 sources
Severity
8.0HIGH
EPSS
5.9%
top 9.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Tenda W30e Firmware
Timeline
PublishedApr 17
Latest updateJun 17

Description

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.1 | Impact: 5.9

Affected Packages1 packages

NVDtenda/w30e_firmware1.0.1.25\(633\)

🔴Vulnerability Details

2
CVEList
CVE-2024-32293: Tenda W30E v12024-04-17
GHSA
GHSA-cqxr-3xmh-c26p: Tenda W30E v12024-04-17

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS Tenda DhcpListClient page Parameter Buffer Overflow Attempt (CVE,2025-12236, CVE-2024-32293, CVE-2024-41462)2025-06-17
CVE-2024-32293 (HIGH CVSS 8) | Tenda W30E v1.0 V1.0.1.25(633) firm | cvebase.io