Vulnerability in N/a

CVE-2026-38835

Tenda W30E V2.0 V16.01.0.21 was found to contain a command injection vulnerability in the formSetUSBPartitionUmount function via the usbPartitionName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafte…

EPSS: 0.010 (77.6th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References