Tenda W20E vulnerabilities
4 known vulnerabilities affecting tenda/w20e.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4
Vulnerabilities
Page 1 of 1
CVE-2026-11524P2HIGHCVSS 8.8v15.11.0.62026-06-08
CVE-2026-11524 [HIGH] CWE-119 CVE-2026-11524: A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function modifyWifiFilterRul
A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function modifyWifiFilterRules of the file /goform/modifyWifiFilterRules of the component Web Management Interface. The manipulation of the argument wifiFilterListRemark leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to t
nvd
CVE-2024-3874P2HIGHCVSS 8.8v15.11.0.62024-04-16
CVE-2024-3874 [HIGH] CWE-121 CVE-2024-3874: A vulnerability was found in Tenda W20E 15.11.0.6. It has been declared as critical. This vulnerabil
A vulnerability was found in Tenda W20E 15.11.0.6. It has been declared as critical. This vulnerability affects the function formSetRemoteWebManage of the file /goform/SetRemoteWebManage. The manipulation of the argument remoteIP leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and
nvd
CVE-2026-11522P2HIGHCVSS 8.8v15.11.0.62026-06-08
CVE-2026-11522 [HIGH] CWE-119 CVE-2026-11522: A vulnerability was detected in Tenda W20E 15.11.0.6. This vulnerability affects the function formSe
A vulnerability was detected in Tenda W20E 15.11.0.6. This vulnerability affects the function formSetPortMirror of the file /goform/setPortMirror. Performing a manipulation of the argument portMirrorMirroredPorts results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.
nvd
CVE-2026-11523P2HIGHCVSS 8.8v15.11.0.62026-06-08
CVE-2026-11523 [HIGH] CWE-119 CVE-2026-11523: A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the
A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the file /goform/PortalAuth of the component Web Management Interface. Executing a manipulation of the argument gotoUrl can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.
nvd