CVE-2026-30140 in W15Einfo

Zusammenfassung

von MITRE • 09.03.2026

An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26_cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the configuration file containing plaintext administrator credentials, leading to sensitive information disclosure and potential remote administrative access.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

MITRE

Reservieren

04.03.2026

Veröffentlichung

09.03.2026

Moderieren

akzeptiert

Eintrag

VDB-349853

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

7.5 (CISA-ADP)

EPSS

0.00067

KEV

nein

Aktivitäten

very low

Sektor

Agriculture, Chemical, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-30140
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-30140
CVE Details	https://www.cvedetails.com/cve/CVE-2026-30140/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!