W18e Firmware Security Vulnerabilities and Issues — W18e Firmware CVE List

Lucene search

TendaW18e Firmware

4 matches found

CVE•added 2025/03/20 7:15 p.m.•50 views

CVE-2025-29217

Tenda W18E v2.0 v16.01.0.11 was discovered to contain a stack overflow in the wifiSSID parameter at /goform/setModules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

6.5CVSS7.7AI score0.00119EPSS

CVE•added 2025/03/20 7:15 p.m.•46 views

CVE-2025-29218

Tenda W18E v2.0 v16.01.0.11 was discovered to contain a stack overflow in the wifiPwd parameter at /goform/setModules. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.

6.5CVSS7.7AI score0.00108EPSS

CVE•added 2025/02/10 7:15 p.m.•41 views

CVE-2024-46437

A sensitive information disclosure vulnerability in the Tenda W18E V16.01.0.8(1625) web management portal allows an unauthenticated remote attacker to retrieve sensitive configuration information, including WiFi SSID, WiFi password, and base64-encoded administrator credentials, by sending a special...

6.5CVSS6.6AI score0.00363EPSS

CVE•added 2025/02/10 7:15 p.m.•38 views

CVE-2024-46430

Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. Unauthorized password change via the web management portal allows an unauthenticated remote attacker to change the administrator password by sending a specially crafted HTTP POST request to the setLoginPassword function, bypassi...

6.5CVSS6.8AI score0.00023EPSS