Lucene search

Tew-831dr Firmware Security Vulnerabilities

cve

CVE-2022-30325

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The default pre-shared key for the Wi-Fi networks is the same for every router except for the last four digits. The device default pre-shared key for both 2.4 GHz and 5 GHz networks can be guessed or brute-forced by an attacker wi...

8.8CVSS

8.7AI Score

0.001EPSS

2022-06-16 11:15 PM

cve

CVE-2022-30326

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The network pre-shared key field on the web interface is vulnerable to XSS. An attacker can use a simple XSS payload to crash the basic.config page of the web interface.

5.4CVSS

5.2AI Score

0.001EPSS

2022-06-16 11:15 PM

cve

CVE-2022-30327

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The web interface is vulnerable to CSRF. An attacker can change the pre-shared key of the Wi-Fi router if the interface's IP address is known.

6.5CVSS

6.4AI Score

0.001EPSS

2022-06-16 11:15 PM

cve

CVE-2022-30328

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The username and password setup for the web interface does not require entering the existing password. A malicious user can change the username and password of the interface.

6.5CVSS

6.6AI Score

0.001EPSS

2022-06-16 11:15 PM

cve

CVE-2022-30329

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. An OS injection vulnerability exists within the web interface, allowing an attacker with valid credentials to execute arbitrary shell commands.

9.8CVSS

9.6AI Score

0.002EPSS

2022-06-16 11:15 PM