TRENDnet TEW-755AP is a router from Trendnet, Inc. A command injection vulnerability exists in TRENDnet TEW-755AP, which stems from the failure to properly filter the wps_sta_enrollee_pin parameter in the set_sta_enrollee_pin_5g function construct command special characters, commands, etc. An attacker could use this vulnerability to execute arbitrary commands on the system.