VYPR
Unrated severityNVD Advisory· Published Jan 26, 2026· Updated Mar 5, 2026

Tenda W30E V2 Allows Password Changes Without Verifying Current Password

CVE-2026-24440

Description

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) allow account passwords to be changed through the maintenance interface without requiring verification of the existing password. This enables unauthorized password changes when access to the affected endpoint is obtained.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.