Количество 3
Количество 3
CVE-2026-24439
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) fail to include the X-Content-Type-Options: nosniff response header on web management interfaces. As a result, browsers that perform MIME sniffing may incorrectly interpret attacker-influenced responses as executable script.
GHSA-w69g-qrmr-3cf2
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) fail to include the X-Content-Type-Options: nosniff response header on web management interfaces. As a result, browsers that perform MIME sniffing may incorrectly interpret attacker-influenced responses as executable script.
BDU:2026-01031
Уязвимость веб-интерфейса управления микропрограммного обеспечения маршрутизаторов Tenda W30E, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-24439 Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) fail to include the X-Content-Type-Options: nosniff response header on web management interfaces. As a result, browsers that perform MIME sniffing may incorrectly interpret attacker-influenced responses as executable script. | CVSS3: 6.5 | 0% Низкий | 9 дней назад |
| GHSA-w69g-qrmr-3cf2 Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) fail to include the X-Content-Type-Options: nosniff response header on web management interfaces. As a result, browsers that perform MIME sniffing may incorrectly interpret attacker-influenced responses as executable script. | CVSS3: 6.5 | 0% Низкий | 9 дней назад |
 | BDU:2026-01031 Уязвимость веб-интерфейса управления микропрограммного обеспечения маршрутизаторов Tenda W30E, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS) | CVSS3: 6.5 | 0% Низкий | 9 дней назад |
Уязвимостей на страницу