W30e Firmware Security Vulnerabilities and Issues — W30e Firmware CVE List

Lucene search

TendaW30e Firmware

13 matches found

CVE•added 2024/04/16 7:15 p.m.•54 views

CVE-2024-3879

A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has...

9CVSS8.7AI score0.00364EPSS

CVE•added 2024/04/16 8:15 p.m.•50 views

CVE-2024-3882

A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical. Affected is the function fromRouteStatic of the file /goform/fromRouteStatic. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to launch the attack remotely. The expl...

9CVSS8.8AI score0.00254EPSS

CVE•added 2024/04/17 2:15 p.m.•49 views

CVE-2024-32285

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the password parameter in the formaddUserName function.

8CVSS7.6AI score0.00082EPSS

CVE•added 2024/04/17 2:15 p.m.•45 views

CVE-2024-32290

Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromAddressNat function.

6.7CVSS7.4AI score0.0009EPSS

CVE•added 2024/04/17 2:15 p.m.•44 views

CVE-2024-32286

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromVirtualSer function.

9.8CVSS7.4AI score0.00188EPSS

CVE•added 2024/04/17 2:15 p.m.•44 views

CVE-2024-32291

Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow vulnerability via the page parameter in the fromNatlimit function.

7.5CVSS7.4AI score0.00113EPSS

CVE•added 2024/04/17 2:15 p.m.•43 views

CVE-2024-32287

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the qos parameter in the fromqossetting function.

6.5CVSS7.4AI score0.00084EPSS

CVE•added 2024/04/17 2:15 p.m.•42 views

CVE-2024-32288

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page parameter in the fromwebExcptypemanFilter function.

6.3CVSS7.4AI score0.00109EPSS

CVE•added 2024/04/17 2:15 p.m.•42 views

CVE-2024-32292

Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

8.8CVSS7.5AI score0.00794EPSS

CVE•added 2024/04/25 2:15 p.m.•42 views

CVE-2024-4171

A vulnerability classified as critical has been found in Tenda W30E 1.0/1.0.1.25. Affected is the function fromWizardHandle of the file /goform/WizardHandle. The manipulation of the argument PPW leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been...

9CVSS7AI score0.00359EPSS

CVE•added 2024/04/16 7:15 p.m.•41 views

CVE-2024-3880

A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This vulnerability affects the function formWriteFacMac of the file /goform/WriteFacMac. The manipulation of the argument mac leads to os command injection. The attack can be initiated remotely. The exploit has b...

8.8CVSS7.3AI score0.00937EPSS

CVE•added 2024/04/17 2:15 p.m.•40 views

CVE-2024-32293

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability via the page parameter in the fromDhcpListClient function.

8CVSS7.4AI score0.06376EPSS

CVE•added 2024/04/16 8:15 p.m.•36 views

CVE-2024-3881

A vulnerability was found in Tenda W30E 1.0.1.25(633) and classified as critical. This issue affects the function frmL7PlotForm of the file /goform/frmL7ProtForm. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been d...

9CVSS6.9AI score0.00254EPSS