Tenda W30E vulnerabilities

5 known vulnerabilities affecting tenda/w30e.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5

Vulnerabilities

Page 1 of 1
CVE-2024-4171HIGHCVSS 8.8v1.0v1.0.1.252024-04-25
CVE-2024-4171 [HIGH] CWE-121 CVE-2024-4171: A vulnerability classified as critical has been found in Tenda W30E 1.0/1.0.1.25. Affected is the fu A vulnerability classified as critical has been found in Tenda W30E 1.0/1.0.1.25. Affected is the function fromWizardHandle of the file /goform/WizardHandle. The manipulation of the argument PPW leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-261990 is
cvelistv5nvd
CVE-2024-3881HIGHCVSS 8.8v1.0.1.25(633)2024-04-16
CVE-2024-3881 [HIGH] CWE-121 CVE-2024-3881: A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated i
cvelistv5nvd
CVE-2024-3882HIGHCVSS 8.8v1.0.1.25(633)2024-04-16
CVE-2024-3882 [HIGH] CWE-121 CVE-2024-3882: A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The
cvelistv5nvd
CVE-2024-3879HIGHCVSS 8.8v1.0.1.25(633)2024-04-16
CVE-2024-3879 [HIGH] CWE-121 CVE-2024-3879: A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affec A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The ident
cvelistv5nvd
CVE-2024-3880HIGHCVSS 8.8v1.0.1.25(633)2024-04-16
CVE-2024-3880 [MEDIUM] CWE-78 CVE-2024-3880: A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This vulnerab A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This vulnerability affects the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-260914
cvelistv5nvd