Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-30140

An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26_cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the configuration file containing plaintext administrator credentials, leading to sensitive information disclosure and potential remote administrative access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.4%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-30140
  • Tenda » W15e » Version: N/A
    cpe:2.3:h:tenda:w15e:-
  • Tenda » W15e Firmware » Version: 02.03.01.26_cn
    cpe:2.3:o:tenda:w15e_firmware:02.03.01.26_cn


Products
Pricing
Contact Us

Shodan ® - All rights reserved