PT-2026-4791 · Tenda · Tenda W30E V2
Published
2026-01-26
·
Updated
2026-01-26
·
CVE-2026-24431
CVSS v4.0
7.1
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037)
Description
The firmware for the Shenzhen Tenda W30E V2 device stores user account passwords in plaintext within the administrative web interface. This allows any user with access to the affected management pages to view stored credentials directly.
Recommendations
Update firmware to a version newer than V16.01.0.19(5037).
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tenda W30E V2