Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability via the function setFixTools.
The setFixTools function does not perform sufficient validation of user-supplied input data, leading to an out-of-bounds write error (CWE-787). An attacker can craft an appropriate network request containing a malicious payload that will be executed as a system command on the device. The attack is possible remotely, without authentication and without user interaction.
An attacker can gain full control over the device, including the ability to read and modify configuration, intercept network traffic, and use the router as an entry point to the local network.
Apply patches available from the manufacturer according to the references provided. Until an update is applied, it is recommended to restrict access to the device's administrative panel only to trusted IP addresses and isolate the device from untrusted network segments.
Tenda W30E with firmware version V16.01.0.12(4843)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTenda W30e
HWTendawszystkie wersjeTenda W30e Firmware
OSTenda16.01.0.12\(4843\)
Related vulnerabilities
Command injection w Tenda W30E via parametr usbPartitionName
Brak ograniczenia prób logowania w Tenda W30E — atak brute-force
Tenda W30E V2 — predefiniowane domyślne hasło w firmware umożliwia nieautoryzowany dostęp
Tenda W30E — stack overflow w funkcji UploadCfg (parametr v17)
Stack overflow w Tenda W30E przez parametr 'page' w funkcji fromVirtualSer