1964 matches found
CVE-2024-36729
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action wizardipv6 with a sufficiently long reboottype key...
CVE-2024-36728
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action vlansetting with a sufficiently long dns1 or dns 2 key...
CVE-2025-25523
Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v11.00.023 due to the lack of length verification, which is related to the mobile access point setup operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability...
CVE-2025-25523
Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v11.00.023 due to the lack of length verification, which is related to the mobile access point setup operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability...
CVE-2025-25523
Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v11.00.023 due to the lack of length verification, which is related to the mobile access point setup operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability...
CVE-2025-25523
Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v11.00.023 due to the lack of length verification, which is related to the mobile access point setup operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability...
TRENDnet TEG-40128 安全漏洞
The TRENDnet TEG-40128 is a smart switch from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEG-40128 v1 1.00.023 version, which stems from a lack of length validation and a buffer overflow vulnerability that could cause a remote target device to crash or execute arbitrary comman...
CVE-2025-25523
CVE-2025-25523 affects Trendnet TEG-40128 Web Smart Switch, version 1(1.00.023). The vulnerability is a buffer overflow caused by lack of length verification in the mobile access point setup operation, allowing an attacker to directly control the remote device. The issue is documented across mult...
CVE-2025-25523
Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v11.00.023 due to the lack of length verification, which is related to the mobile access point setup operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability...
PT-2025-6378 · Trendnet · Teg-40128 Web Smart Switch
Name of the Vulnerable Software and Affected Versions: Trendnet TEG-40128 Web Smart Switch version 11.00.023 Description: The issue is related to a buffer overflow vulnerability due to the lack of length verification in the mobile access point setup operation. This vulnerability allows an attacke...
CVE-2024-0919
A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function dosetNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely...
CVE-2024-0920
A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This vulnerability affects unknown code of the file /adminping.htm of the component POST Request Handler. The manipulation of the argument ipv4ping/ipv6ping leads to command injection. The attack can be...
CVE-2024-0918
A vulnerability was found in TRENDnet TEW-800MB 1.0.1.0 and classified as critical. Affected by this issue is some unknown functionality of the component POST Request Handler. The manipulation of the argument DeviceURL leads to os command injection. The attack may be launched remotely. The exploi...
CVE-2024-57590
TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interface "ntpsync.cgi",which allows remote attackers to execute arbitrary commands via parameter "ntpserver" passed to the "ntpsync.cgi" binary through a POST request...
CVE-2024-57590
TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interface "ntpsync.cgi",which allows remote attackers to execute arbitrary commands via parameter "ntpserver" passed to the "ntpsync.cgi" binary through a POST request...
CVE-2024-57590
TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interface "ntpsync.cgi",which allows remote attackers to execute arbitrary commands via parameter "ntpserver" passed to the "ntpsync.cgi" binary through a POST request...
CVE-2024-57590
TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interface "ntpsync.cgi",which allows remote attackers to execute arbitrary commands via parameter "ntpserver" passed to the "ntpsync.cgi" binary through a POST request...
CVE-2024-57590
TRENDnet TEW-632BRP v1.010B31 is affected by an OS command injection in the CGl interface ntp_sync.cgi. The vulnerability allows a remote attacker to execute arbitrary commands by sending a crafted ntp_server parameter in a POST request to ntp_sync.cgi. CVSS v3.1 base score 9.8 (CRITICAL) with Ne...
TRENDnet TEW-632BRP 安全漏洞
The TRENDnet TEW-632BRP is a wireless router from Trendnet, Inc. A security vulnerability exists in TRENDnet TEW-632BRP version 1.010B31, which originates from an OS command injection vulnerability in the CGl interface ntpsync.cgi, which allows remote attackers to execute arbitrary commands...
PT-2025-3479 · Trendnet · Trendnet Tew-632Brp
Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-632BRP version 1.010B31 Description: The issue is related to an OS command injection vulnerability in the CGl interface "ntp sync.cgi". This vulnerability allows remote attackers to execute arbitrary commands via the ntp server...