Vulnerability in N/a

CVE-2026-30140

An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26_cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the configuration file containing plaintext administrator cr…

EPSS: 0.001 (20.8th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References