CVE-2023-49235

2024-01-0900:00:00

mitre

www.cve.org

cve-2023-49235

libremote_dbg.so

debug information

popen

validation bypass

shell command

9.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.7%

JSON

An issue was discovered in libremote_dbg.so on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Filtering of debug information is mishandled during use of popen. Consequently, an attacker can bypass validation and execute a shell command.

References

drive.google.com/file/d/1lTloBkH_7zAz1ZbFVSZnfpoPd81aPaHx/view?usp=sharing

github.com/pcsle37/TRENDnet/blob/main/TRENDnet_vul.pdf