Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-18956
HistoryJan 04, 2023 - 12:00 a.m.

TRENDnet TEW-755AP Command Injection Vulnerability (CNVD-2023-18956)

2023-01-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
trendnet tew-755ap
command injection
vulnerability
cnvd-2023-18956
router
trendnet inc
wps sta enrollee pin
set sta enrollee pin 5g
arbitrary commands

0.016 Low

EPSS

Percentile

87.4%

JSON

TRENDnet TEW-755AP is a router from Trendnet, Inc. A command injection vulnerability exists in TRENDnet TEW-755AP, which stems from the failure to properly filter the wps_sta_enrollee_pin parameter in the set_sta_enrollee_pin_5g function construct command special characters, commands, etc. An attacker could use this vulnerability to execute arbitrary commands on the system.

Related

cvelist 1
cve 1
nvd 1
prion 1
cvelist
cvelist
CVE-2022-46598
2022-12-30 00:00:00
cve
cve
CVE-2022-46598
2022-12-30 21:15:10
nvd
nvd
CVE-2022-46598
2022-12-30 21:15:10
prion
prion
Command injection
2022-12-30 21:15:00

0.016 Low

EPSS

Percentile

87.4%

JSON
Related for CNVD-2023-18956
cvelist1cve1nvd1prion1