Vulnerabilities > Tenda > W30E Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-49402 Out-of-bounds Write vulnerability in Tenda W30E Firmware 16.01.0.12(4843)
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function localMsg.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2023-02-27 CVE-2023-25231 Out-of-bounds Write vulnerability in Tenda W30E Firmware V1.0.1.25(633)
Tenda Router W30E V1.0.1.25(633) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface.
network
low complexity
tenda CWE-787
critical
 9.8
9.8
2022-12-08 CVE-2022-45506 OS Command Injection vulnerability in Tenda W30E Firmware 1.0.1.25(633)
Tenda W30E v1.0.1.25(633) was discovered to contain a command injection vulnerability via the fileNameMit parameter at /goform/delFileName.
network
low complexity
tenda CWE-78
critical
 9.8
9.8