Lucene search
K

61 matches found

Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-15487 TRENDnet TEW-821DAP Firmware Update system_ntp sub_41FBD0 os command injection

A vulnerability was found in TRENDnet TEW-821DAP 1.11B03. This impacts the function sub41FBD0 of the file /goform/systemntp of the component Firmware Update Handler. Performing a manipulation of the argument Hostname results in os command injection. The attack may be initiated remotely. The vendo...

6.5CVSS0.0105EPSS
Exploits0References5
CVE
CVE
added 2 days ago18 views

CVE-2026-15487

TRENDnet TEW-821DAP firmware 1.11B03 contains a vulnerability in the Firmware Update Handler: the function sub_41FBD0 in /goform/system_ntp can be abused by manipulating the Hostname argument to cause an OS command injection. The CVE indicates remote execution is possible via a network attack, wi...

6.5CVSS6.5AI score0.0105EPSS
Exploits0References5
NVD
NVD
added 2 days ago6 views

CVE-2026-15485

A flaw has been found in TRENDnet TEW-821DAP 1.11B03. The impacted element is the function sub43F2C4 of the file /goform/toolsnslookup of the component DNS Lookup Handler. This manipulation of the argument nslookuptarget/dnsserver causes os command injection. The attack can be initiated remotely...

6.5CVSS0.0105EPSS
Exploits0References5
CVE
CVE
added 2 days ago18 views

CVE-2026-15486

The vulnerability CVE-2026-15486 affects TRENDnet TEW-821DAP (firmware 1.11B03). It targets the Firmware Update Handler's /goform/tools_ddns component, specifically function sub_42026C, where manipulation of hostname/username/password can trigger an os command injection. The attack is described a...

6.5CVSS6.4AI score0.0105EPSS
Exploits0References5
NVD
NVD
added 2 days ago7 views

CVE-2026-15484

A vulnerability was detected in TRENDnet TEW-821DAP 1.12B01. The affected element is the function sub41EC14 of the file /goform/toolsnslookup of the component ssi. The manipulation results in buffer overflow. It is possible to launch the attack remotely. The vendor explains: "We are unable to...

9CVSS0.00463EPSS
Exploits0References5
NVD
NVD
added 2 days ago9 views

CVE-2026-15483

A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function sub41EC14 of the file /goform/toolsnslookup of the component ssi. The manipulation of the argument nslookuptarget leads to buffer overflow. It is possible to initiate the attack remotely. The vendo...

9CVSS0.00463EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago9 views

EUVD-2026-43207

A flaw has been found in TRENDnet TEW-821DAP 1.11B03. The impacted element is the function sub43F2C4 of the file /goform/toolsnslookup of the component DNS Lookup Handler. This manipulation of the argument nslookuptarget/dnsserver causes os command injection. The attack can be initiated remotely...

6.5CVSS6.5AI score0.0105EPSS
Exploits0References5
CVE
CVE
added 2 days ago16 views

CVE-2026-15485

TRENDnet TEW-821DAP 1.11B03 contains a flaw in the DNS Lookup Handler (function sub_43F2C4 in /goform/tools_nslookup) that allows os command injection via manipulation of nslookup_target/dns_server. The vulnerability can be triggered remotely. The vendor notes these items are EOL; no current conf...

6.5CVSS6.5AI score0.0105EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago5 views

EUVD-2026-43206

A vulnerability was detected in TRENDnet TEW-821DAP 1.12B01. The affected element is the function sub41EC14 of the file /goform/toolsnslookup of the component ssi. The manipulation results in buffer overflow. It is possible to launch the attack remotely. The vendor explains: "We are unable to...

9CVSS6.2AI score0.00463EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-43205

A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function sub41EC14 of the file /goform/toolsnslookup of the component ssi. The manipulation of the argument nslookuptarget leads to buffer overflow. It is possible to initiate the attack remotely. The vendo...

9CVSS6.3AI score0.00463EPSS
Exploits0References5
CVE
CVE
added 2 days ago17 views

CVE-2026-15483

TRENDnet TEW-821DAP 1.12B01 contains a buffer overflow in the SSI component: the function sub_41EC14 in /goform/tools_nslookup is triggered by manipulating the nslookup_target argument, potentially allowing remote code execution. Several sources confirm the same issue for TEW-821DAP (v1.0R) as th...

9CVSS7.3AI score0.00463EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2 days ago10 views

PT-2026-57527

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-821DAP version 1.12B01 Description A buffer overflow can be triggered remotely via the nslookup target argument in the sub 41EC14 function within the /goform/tools nslookup file of the ssi component. This issue affects products th...

9CVSS7.1AI score0.00463EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2 days ago10 views

PT-2026-57532

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-821DAP version 1.11B03 Description An OS command injection flaw exists in the Firmware Update Handler component. A remote attacker can trigger this issue by manipulating the Hostname argument within the sub 41FBD0 function of the...

6.5CVSS6.7AI score0.0105EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2 days ago9 views

PT-2026-57528

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-821DAP version 1.12B01 Description A buffer overflow can be triggered remotely within the ssi component. The issue resides in the sub 41EC14 function located in the /goform/tools nslookup file. A buffer overflow occurs when a...

9CVSS7.3AI score0.00463EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.8 views

CVE-2026-7610

A vulnerability has been found in TRENDnet TEW-821DAP 1.12B01. This affects an unknown function of the file /www/cgi/ssi of the component Firmware Update. Such manipulation leads to cleartext transmission of sensitive information. The attack can be executed remotely. This attack is characterized ...

8.1CVSS5.1AI score0.00319EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.8 views

CVE-2026-7608

A vulnerability was detected in TRENDnet TEW-821DAP up to 1.12B01. The affected element is the function toolsdiagnostic. The manipulation results in os command injection. The exploit is now public and may be used. The vendor explains: "That firmware version will only work on our hardware version...

8CVSS5.8AI score0.05189EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.10 views

CVE-2026-7606

A weakness has been identified in TRENDnet TEW-821DAP 1.12B01. This issue affects the function findhwid/newguiupdatefirmware of the component Firmware Update Handler. Executing a manipulation of the argument dest can lead to insufficient verification of data authenticity. The attack can be launch...

8.1CVSS5.4AI score0.00234EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.8 views

CVE-2026-7607

A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function autoupdatefirmware of the component Firmware Udpate. The manipulation of the argument str leads to buffer overflow. The attack may be initiated remotely. The vendor explains: "That firmware version...

9CVSS7.7AI score0.00632EPSS
Exploits1References1
NVD
NVD
added 2026/05/02 10:16 a.m.7 views

CVE-2026-7609

A flaw has been found in TRENDnet TEW-821DAP up to 1.12B01. The impacted element is the function toolsdiagnostic of the file /tmp/diagnostic of the component Firmware Udpate. This manipulation causes os command injection. Remote exploitation of the attack is possible. The exploit has been publish...

8.8CVSS0.04123EPSS
Exploits1References4
NVD
NVD
added 2026/05/02 10:16 a.m.9 views

CVE-2026-7611

A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platformdoupgradecameodev of the file cameodev.sh of the component Firmware Update Handler. Performing a manipulation results in insufficient verification of data authenticity. The attack is possible to be...

8.1CVSS0.00234EPSS
Exploits1References4
Rows per page
Query Builder