A vulnerability classified as critical was found in Tenda O3V2 1.0.0.12(3880). This vulnerability affects the function SetStp. The manipulation of the argument stpEn leads to command injection.

This vulnerability was named CVE-2024-36604. The attack can only be initiated within the local network. There is no exploit available.