1964 matches found
CVE-2019-13155
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Virtual Server...
CVE-2019-13155
TRENDnet TEW-827DRU firmware before 2.05B11 contains a command-injection vulnerability in apply.cgi exploitable with authentication via the IP Address in Add Virtual Server. Affected component: router firmware (TEW-827DRU). Root cause: input handling in Add Virtual Server allows execution of arbi...
CVE-2019-13154
TRENDnet TEW-827DRU firmware prior to 2.05B11 contains a command injection in apply.cgi (exploitable with authentication) via the TCP Ports To Open in Add Gaming Rule. Root cause: improper filtering of externally entered data during command construction. Impact: potential unauthorized command exe...
CVE-2019-13154
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the TCP Ports To Open in Add Gaming Rule...
CVE-2019-13153
TRENDnet TEW-827DRU devices are affected by CVE-2019-13153 (firmware before 2.05B11). The issue is a command injection in apply.cgi reachable via the Private Port in Add Virtual Server, exploitable with authentication. Multiple connected sources confirm the vulnerability details and affected firm...
CVE-2019-13153
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the Private Port in Add Virtual Server...
CVE-2019-13152
CVE-2019-13152 affects TRENDnet TEW-827DRU firmware prior to 2.05B11. The issue is a command injection in the apply.cgi endpoint triggered via the IP Address field in Add Gaming Rule, exploitable with authentication. Public documents consistently describe the vulnerable component as apply.cgi and...
CVE-2019-13152
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Gaming Rule...
CVE-2019-13151
CVE-2019-13151 affects TRENDnet TEW-827DRU firmware prior to 2.05B11. The issue is a command injection in the apply.cgi endpoint, exploitable with authentication via the parameter set_sta_enrollee_pin_5g and the key wps_sta_enrollee_pin. Affected component: apply.cgi on the device firmware. Root ...
CVE-2019-13151
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the action setstaenrolleepin5g and the key wpsstaenrolleepin...
CVE-2019-13150
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication. The command injection exists in the key ipaddr...
CVE-2019-13150
The CVE-2019-13150 issue affects TRENDnet TEW-827DRU routers, with a command injection in apply.cgi (in the ip_addr parameter) present in firmware versions prior to 2.05B11. Exploitation is noted as requiring authentication. The connected documents consistently describe this vulnerability across ...
CVE-2019-13149
The TRENDnet TEW-827DRU router (firmware prior to 2.05B11) exposes a command-injection vulnerability in apply.cgi, exploitable with authentication via the key passwd in Routing RIP Settings. CVSS context from NVD/Red Hat CNVD notes base scores around 6.5–8.8 (network, low complexity, privileges r...
CVE-2019-13149
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the key passwd in Routing RIP Settings...
CVE-2019-13148
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the UDP Ports To Open in Add Gaming Rule...
CVE-2019-13148
TRENDnet TEW-827DRU firmware prior to 2.05B11 is affected by a command-injection vulnerability in apply.cgi that is exploitable with authentication via the UDP Ports To Open in Add Gaming Rule. Several sources corroborate this issue. The vulnerability could allow execution of arbitrary commands o...
TRENDnet TEW-827DRU Command Injection Vulnerability (CNVD-2019-25519)
The TRENDnet TEW-827DRU is a wireless router from TRENDnet. A command injection vulnerability exists in the apply.cgi file in the TRENDnet TEW-827DRU using firmware prior to version 2.05B11. The vulnerability stems from a network system or product not properly filtering specific elements of...
TRENDnet TEW-827DRU Command Injection Vulnerability
The TRENDnet TEW-827DRU is a wireless router from TRENDnet. A command injection vulnerability exists in the apply.cgi file in the TRENDnet TEW-827DRU using firmware prior to version 2.05B11. The vulnerability stems from a network system or product not properly filtering specific elements of...
TRENDnet TEW-827DRU Command Injection Vulnerability (CNVD-2019-25520)
The TRENDnet TEW-827DRU is a wireless router from TRENDnet. A command injection vulnerability exists in the apply.cgi file in the TRENDnet TEW-827DRU using firmware prior to version 2.05B11. The vulnerability stems from a network system or product not properly filtering specific elements of...
CVE-2019-11417
system.cgi on TRENDnet TV-IP110WN cameras has a buffer overflow caused by an inadequate source-length check before a strcpy operation in the respondAsp function. Attackers can exploit the vulnerability by using the languse parameter with a long string. This affects 1.2.2 build 28, 64, 65, and 68...