Vulnerabilities > Tenda > W30E Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-49411 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) contains a stack overflow vulnerability via the function formDeleteMeshNode.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-49406 Unspecified vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the function /goform/telnet.
network
low complexity
tenda
critical
9.8
2023-12-07 CVE-2023-49405 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-49404 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formAdvancedSetListSet.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-50002 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formRebootMeshNode.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-50001 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formUpgradeMeshOnline.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-50000 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function formResetMeshNode.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-49999 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setUmountUSBPartition.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-49410 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function via the function set_wan_status.
network
low complexity
tenda CWE-787
critical
9.8
2023-12-07 CVE-2023-49403 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools.
network
low complexity
tenda CWE-787
critical
9.8