CNNVD-202601-4346 Information

CNNVD ID

CNNVD-202601-4346

Related CVE

CVE-2026-24439

• CNNVD Published: 2026-01-26

Description (Chinese)

Tenda W30E是中国腾达（Tenda）公司的一款路由器。 Tenda W30E V2 V16.01.0.19(5037)及之前版本存在安全漏洞，该漏洞源于Web管理界面缺少X-Content-Type-Options标头，可能导致浏览器错误解释响应为可执行脚本。

Description (English)

Tenda W30E is a router for Tenda China. There is a security loophole in Tenda W30E V2 V16.01.19 (5037) and earlier versions, which stems from the lack of X-Content-Type-Options header in the Web management interface, which may lead to an error in the browser ’ s interpretation response to an enforceable script.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

腾达

Published

2026-01-26

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/tenda-w30e-v2-lacks-x-content-type-options-header https://www.tendacn.com/product/W30E https://access.redhat.com/security/cve/cve-2026-24439