2 matches found
CVE-2025-15472
TRENDnet TEW-811DRU firmware 1.0.2.0 is affected by an OS command injection in httpd/uapply.cgi setDeviceURL. Manipulation of the DeviceURL argument enables remote command execution with high impact. Exploit is published; vendor did not respond to disclosure. There is no publicly documented fix/u...
CVE-2025-15472 TRENDnet TEW-811DRU httpd uapply.cgi setDeviceURL os command injection
A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL of the file uapply.cgi of the component httpd . This manipulation of the argument DeviceURL causes os command injection. The attack can be initiated remotely. The exploit has been published and may be...