CVE-2024-37641

TRENDnet TEW-814DAP v1 (FW1.01B01) is affected by a stack overflow in the submit-url parameter at /formNewSchedule. The issue is confirmed across multiple sources; the root cause is an input handling/stack overflow in that endpoint. Impact is rated high (CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:...

CVE-2024-37645

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a stack overflow vulnerability via the submit-url parameter at /formSysLog...

TRENDnet TEW-814DAP Security Vulnerability

The TRENDnet TEW-814DAP is a wireless access point from Trendnet, Inc. A security vulnerability exists in the TRENDnet TEW-814DAP v1FW1.01B01 version that stems from a hard-coded password vulnerability in /etc/shadow.sample that allows an attacker to log in as root...

TRENDnet TEW-814DAP 安全漏洞

The TRENDnet TEW-814DAP is a wireless access point from TRENDnet. The TRENDnet TEW-814DAP suffers from a stack buffer overflow vulnerability that originates from the submit-url parameter at /formPasswordAuth failing to properly validate the length of the input data, which could be exploited by an...

TRENDnet TEW-814DAP 安全漏洞

The TRENDnet TEW-814DAP is a wireless access point from TRENDnet. The TRENDnet TEW-814DAP suffers from a stack buffer overflow vulnerability that stems from the submit-url parameter at /formSysLog failing to properly validate the length of the input data, which could be exploited by an attacker t...

TRENDnet TEW-814DAP Security Vulnerability

The TRENDnet TEW-814DAP is a wireless access point from Trendnet, Inc. A security vulnerability exists in TRENDnet TEW-814DAP version v1FW1.01B01, which originates from a command injection vulnerability contained in the ipv4ping, ipv6ping parameters at /formSystemCheck...

PT-2024-27694 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version 1 FW1.01B01 Description: A stack overflow issue was discovered, which can be triggered via the submit-url parameter at the "/formNewSchedule" API endpoint. Recommendations: For TRENDnet TEW-814DAP version 1...

CVE-2024-37643

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a stack overflow vulnerability via the submit-url parameter at /formPasswordAuth...

CVE-2024-37645

The provided documents confirm a stack overflow in TRENDnet TEW-814DAP (v1, FW1.01B01) triggered by the submit-url parameter at /formSysLog. This vulnerability is characterized by a local stack-based overflow (root cause: improper input validation of the submit-url data) that can lead to a denial...

CVE-2024-37642

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a command injection vulnerability via the ipv4ping, ipv6ping parameter at /formSystemCheck...

CVE-2024-37642

Summary (CVE-2024-37642): TRENDnet TEW-814DAP v1 with FW1.01B01 is affected by a command-injection vulnerability in the /formSystemCheck endpoint, exploitable via the ipv4_ping and ipv6_ping parameters. The vulnerability is labeled with a network attack vector, low authentication/privilege requir...

PT-2024-27695 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version 1 FW1.01B01 Description: A command injection issue was discovered, affecting the ipv4 ping and ipv6 ping parameters at the /formSystemCheck API endpoint. This allows for potential command injection attacks...

PT-2024-27697 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version 1 FW1.01B01 Description: The issue allows attackers to log in as root due to a hardcoded password vulnerability found in /etc/shadow.sample. This enables unauthorized access to the system. Recommendations: For...

PT-2024-27696 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version 1 FW1.01B01 Description: A stack overflow issue was discovered via the submit-url parameter at the "/formPasswordAuth" API endpoint. Recommendations: For TRENDnet TEW-814DAP version 1 FW1.01B01, avoid using the...

CVE-2024-37643

TRENDnet TEW-814DAP v1 (FW1.01B01) is affected by a stack overflow in the /formPasswordAuth endpoint caused by insufficient validation of the submit-url parameter. This vulnerability could lead to a denial-of-service condition. Public details in connected documents confirm the issue and affected ...

CVE-2024-37644

TRENDnet TEW-814DAP v1FW1.01B01 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root...

TRENDnet TEW-814DAP Security Vulnerability

The TRENDnet TEW-814DAP is a wireless access point from Trendnet, Inc. A security vulnerability exists in TRENDnet TEW-814DAP v1FW1.01B01, which originates from a stack overflow vulnerability in the submit-url parameter at /formNewSchedule...

CVE-2024-37644

CVE-2024-37644 affects TRENDnet TEW-814DAP v1 (FW1.01B01). A hardcoded password in /etc/shadow.sample enables root login. CVSS v3.1: 8.8 (Network, HIGH impact across Confidentiality, Integrity, Availability). No remediation details are provided in the connected documents; exploitation status is n...

PT-2024-27698 · Trendnet · Trendnet Tew-814Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-814DAP version v1 FW1.01B01 Description: A stack overflow issue was discovered via the submit-url parameter at the "/formSysLog" API endpoint. Recommendations: For TRENDnet TEW-814DAP version v1 FW1.01B01, as a temporary...

CVE-2024-36729

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action wizardipv6 with a sufficiently long reboottype key...