CVE-2026-24436
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-26

Last updated on: 2026-01-28

Assigner: VulnCheck

Description
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) do not enforce rate limiting or account lockout mechanisms on authentication endpoints. This allows attackers to perform unrestricted brute-force attempts against administrative credentials.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-26
Last Modified
2026-01-28
Generated
2026-06-16
AI Q&A
2026-01-26
EPSS Evaluated
2026-06-14
NVD
CVE-2026-24436
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
tenda w30e_firmware to 16.01.0.19\(5037\) (inc)
tenda w30e 2.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-307 The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in Shenzhen Tenda W30E V2 router firmware versions up to V16.01.0.19(5037). It is caused by the lack of rate limiting or account lockout mechanisms on authentication endpoints, allowing attackers to perform unlimited brute-force attacks against administrative credentials. This means attackers can repeatedly try to guess the admin password without any restriction, potentially gaining unauthorized access. [1]

Impact Analysis

The vulnerability can lead to unauthorized initial access to the router by allowing attackers to brute-force administrative credentials without limitation. This can compromise the confidentiality, integrity, and availability of the device and the network it manages, potentially allowing attackers to control the router, intercept or manipulate network traffic, and disrupt services. [1]

Detection Guidance

This vulnerability can be detected by monitoring authentication attempts to the Shenzhen Tenda W30E V2 router for an unusually high number of failed login attempts without any account lockout or rate limiting. Network administrators can use network traffic analysis tools or log inspection to identify repeated authentication requests to the router's administrative interface. Specific commands depend on the environment, but for example, using tools like tcpdump or Wireshark to capture traffic on the router's management port and filtering for repeated login attempts could help. Additionally, checking router logs for repeated failed authentication attempts can indicate exploitation attempts. However, no specific commands are provided in the available resources. [1]

Mitigation Strategies

Immediate mitigation steps include restricting network access to the router's administrative interface to trusted IP addresses only, implementing external protections such as firewall rules or VPN access to limit exposure, and monitoring for brute-force attempts. Since the firmware lacks built-in rate limiting or account lockout, applying firmware updates if available or contacting the vendor for patches is recommended. If no patch is available, consider replacing the device or disabling remote administration to reduce risk. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-24436. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart