The vulnerability of the setUmountUSBPartition function in the microprogramming software for wireless Wi-Fi routers Tenda W30E allows a hacker to execute arbitrary commands.

The vulnerability of the setUmountUSBPartition function in the microprogramming software for Tenda W30E wireless Wi-Fi routers is related to reading data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

CVE-2023-49999

Tenda W30E V16.01.0.124843 was discovered to contain a command injection vulnerability via the function setUmountUSBPartition...

CVE-2023-49999

Tenda W30E V16.01.0.124843 was discovered to contain a command injection vulnerability via the function setUmountUSBPartition...

CVE-2023-49999

Tenda W30E V16.01.0.124843 was discovered to contain a command injection vulnerability via the function setUmountUSBPartition...

Command injection

Tenda W30E V16.01.0.124843 was discovered to contain a command injection vulnerability via the function setUmountUSBPartition...

Tenda W30E 安全漏洞

The Tenda W30E is a router from the Chinese company Tenda. A command execution vulnerability exists in Tenda W30E version V16.01.0.124843, which stems from the setUmountUSBPartition function failing to correctly filter constructor command special characters, commands, etc. The vulnerability can b...

PT-2023-31450 · Tenda · Tenda W30E

Name of the Vulnerable Software and Affected Versions: Tenda W30E version 16.01.0.124843 Description: The issue is related to a command injection vulnerability via the setUmountUSBPartition function. This vulnerability may allow a remote attacker to execute arbitrary commands. The vulnerability i...