Tenda

W20e Firmware

24 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-11524

Exploit
  • EPSS 0.47%
  • Veröffentlicht 08.06.2026 15:00:16
  • Zuletzt bearbeitet 09.06.2026 01:34:33

A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function modifyWifiFilterRules of the file /goform/modifyWifiFilterRules of the component Web Management Interface. The manipulation of the argument wifiFilterListRemark leads to...

9

CVE-2026-11523

Exploit
  • EPSS 0.47%
  • Veröffentlicht 08.06.2026 14:45:09
  • Zuletzt bearbeitet 09.06.2026 01:34:33

A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the file /goform/PortalAuth of the component Web Management Interface. Executing a manipulation of the argument gotoUrl can lead to stack-based buffer ov...

8.8

CVE-2026-11522

Exploit
  • EPSS 0.47%
  • Veröffentlicht 08.06.2026 14:30:11
  • Zuletzt bearbeitet 09.06.2026 01:34:33

A vulnerability was detected in Tenda W20E 15.11.0.6. This vulnerability affects the function formSetPortMirror of the file /goform/setPortMirror. Performing a manipulation of the argument portMirrorMirroredPorts results in stack-based buffer overflo...

9.8

CVE-2026-24107

Exploit
  • EPSS 2.16%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 03.03.2026 15:55:11

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the value of `usbPartitionName`, which is directly used in `doSystemCmd`, may lead to critical command injection vulnerabilities.

9.8

CVE-2026-24110

Exploit
  • EPSS 0.43%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 03.03.2026 15:51:55

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may send overly long `addDhcpRules` data. When these rules enter the `addDhcpRule` function and are processed by `ret = sscanf(pRule, " %d\t%[^\t]\t%[^\n\r\t]", &dhcpsIndex, dhcpsIP, ...

9.8

CVE-2026-24112

Exploit
  • EPSS 0.53%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 03.03.2026 20:16:47

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by specifying the value of `userInfo`. When `userInfo` is passed into the `addWewifiWhiteUser` function and processed by `sscanf` without size validation...

9.8

CVE-2026-24111

Exploit
  • EPSS 0.65%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 05.03.2026 16:16:15

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by specifying the value of `userInfo`. When `userInfo` is passed into the `addAuthUser` function and processed by `sscanf` without size validation, it co...

9.8

CVE-2026-24114

Exploit
  • EPSS 0.62%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 03.03.2026 20:16:47

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate `pPortMapIndex` may lead to buffer overflows when using `strcpy`.

9.8

CVE-2026-24113

Exploit
  • EPSS 0.65%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 05.03.2026 16:16:15

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `nptr`. When this value is passed into the `getMibPrefix` function and concatenated using `sprintf` without proper size valid...

9.8

CVE-2026-24109

Exploit
  • EPSS 0.65%
  • Veröffentlicht 02.03.2026 00:00:00
  • Zuletzt bearbeitet 05.03.2026 16:16:15

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `picName`. When this value is used in `sprintf` without validating variable sizes, it could lead to a buffer overflow vulnera...