CVE-2026-5349

A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function addapcdb of the file /setup.cgi. The manipulation of the argument macpcdba leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be...

CVE-2026-5349 Trendnet TEW-657BRM setup.cgi add_apcdb stack-based overflow

A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function addapcdb of the file /setup.cgi. The manipulation of the argument macpcdba leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be...

CVE-2026-5349

Trendnet TEW-657BRM (1.00.1) is affected by CVE-2026-5349 via the function add_apcdb in /setup.cgi. The mac_pc_dba argument manipulation causes a stack-based buffer overflow, and the vulnerability can be triggered remotely. An exploit is publicly available. The vendor notes the product has been d...

PT-2026-29836

A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. Affected by this issue is the function vpn drop of the file /setup.cgi. The manipulation of the argument policy name leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to th...

TRENDnet TEW-657BRM 安全漏洞

The TRENDnet TEW-657BRM is a WiFi router from TRENDnet. A stack overflow vulnerability exists in the TRENDnet TEW-657BRM addapcdb function, which originates from a misuse of the addapcdb function parameter macpcdba in file /setup.cgi, for which no detailed vulnerability details are available...

TRENDnet TEW-657BRM 安全漏洞

The TRENDnet TEW-657BRM is a WiFi router from TRENDnet. A stack buffer overflow vulnerability exists in the TRENDnet TEW-657BRM updatepcdb function, which originates from incorrect manipulation of the updatepcdb function parameter, macpcdba, in the file /setup.cgi, for which no detailed...

TRENDnet TEW-657BRM 操作系统命令注入漏洞

The TRENDnet TEW-657BRM is a WiFi router from TRENDnet. An OS command injection vulnerability exists in the TRENDnet TEW-657BRM addwpsclient function, which originates from a misuse of the addwpsclient function parameter wlenroleepin in the file /setup.cgi, and can be exploited by an attacker to...

TRENDnet TEW-657BRM 操作系统命令注入漏洞

TRENDnet TEW-657BRM is a WiFi router produced by the TRENDnet company. The version 1.00.1 of Trendnet TEW-657BRM has a vulnerability related to operating system command injection. This vulnerability stems from incorrect handling of the parameter c4IPAddr in the pingtest function of the file...

TRENDnet TEW-657BRM 操作系统命令注入漏洞

TRENDnet TEW-657BRM is a WiFi router produced by the TRENDnet company. The version 1.00.1 of Trendnet TEW-657BRM has a vulnerability related to operating system command injection. This vulnerability stems from incorrect handling of parameters for the Edit function in the file /setup.cgi,...

TRENDnet TEW-657BRM 操作系统命令注入漏洞

TRENDnet TEW-657BRM is a WiFi router produced by the TRENDnet company. The version 1.00.1 of Trendnet TEW-657BRM has a vulnerability related to operating system command injection. This vulnerability stems from incorrect handling of the parameter policyname in the vpnconnect function within the fi...

TRENDnet TEW-657BRM 操作系统命令注入漏洞

The TRENDnet TEW-657BRM is a WiFi router from TRENDnet. An OS command injection vulnerability exists in the TRENDnet TEW-657BRM vpndrop function, which originates from a misuse of the vpndrop function parameter policyname in file /setup.cgi, and can be exploited by an attacker to cause OS command...

PT-2026-29801

A vulnerability was detected in Trendnet TEW-657BRM 1.00.1. Affected is the function ping test of the file /setup.cgi. Performing a manipulation of the argument c4 IPAddr results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The...

PT-2026-29806

A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpn connect of the file /setup.cgi. Executing a manipulation of the argument policy name can lead to os command injection. The attack can be executed remotely. The exploit has been published and ma...

PT-2026-29791

A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted element is the function update pcdb of the file /setup.cgi. The manipulation of the argument mac pc dba results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released to the...

PT-2026-29799

A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function add wps client of the file /setup.cgi. This manipulation of the argument wl enrolee pin causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and...

PT-2026-29800

A security vulnerability has been detected in Trendnet TEW-657BRM 1.00.1. This impacts the function Edit of the file /setup.cgi. Such manipulation of the argument pcdb list leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used...

PT-2026-29790

A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function add apcdb of the file /setup.cgi. The manipulation of the argument mac pc dba leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might ...

CVE-2026-5183

A vulnerability was determined in TRENDnet TEW-713RE up to 1.02. The affected element is the function sub421494 of the file /goform/addRouting. Executing a manipulation of the argument dest can lead to command injection. It is possible to launch the attack remotely. The exploit has been publicly...

CVE-2026-5184

A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...

EUVD-2026-17335

A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file /goform/setSysAdm. The manipulation of the argument admuser leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be use...