Lucene search
K

8 matches found

CNNVD
CNNVD
added 2026/05/31 12:0 a.m.17 views

TRENDnet TEW-432BRP 命令注入漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by the TRENDnet company. The TRENDnet TEW-432BRP 3.10B20 version has a command injection vulnerability. This vulnerability stems from the parameter sysCmd in the formSysCmd function within the goform/formSysCmd file, which allows for...

6.5CVSS6.6AI score0.0105EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by the TRENDnet company. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability arises from the operation of the formSetProtocolFilter function in the file/goform/formSetProtocolFilter, where the paramete...

9CVSS7.7AI score0.00472EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-12646

Malicious code in bioql PyPI...

9CVSS8.8AI score0.03853EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:7 a.m.6 views

CVE-2019-13276

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by providing a sufficiently long query string when POSTing to any valid cgi, txt, asp, or js file. The...

9.8CVSS8.4AI score0.02767EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 a.m.6 views

CVE-2019-13280

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains a stack-based buffer overflow while returning an error message to the user about failure to resolve a hostname during a ping or traceroute attempt. This allows an authenticated user to execute arbitrary code. The exploit can b...

8.8CVSS7.9AI score0.02076EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/03/25 12:0 a.m.7 views

The vulnerability in the `apply.cgi` interface of TRENDnet TEW-827DRU’s CGI microprogramming system allows a hacker to escalate their privileges and execute arbitrary commands.

The vulnerability in the apply.cgi interface of TRENDnet TEW-827DRU microprogramming software’s CGI interface is related to the failure to take measures to neutralize special elements used in the OS command when processing the usapps.d.username parameter. Exploiting this vulnerability allows a...

10CVSS5.8AI score0.02218EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.7 views

TRENDnet TEW-822DRE Security Vulnerability

The TRENDnet TEW-822DRE is a dual-band wireless router from TRENDnet. A security vulnerability exists in the TRENDnet TEW-822DRE version v.1.03B02, which originates from a vulnerability that allows a local attacker to execute arbitrary code via the parameter ipv4ping in /boafrm/formSystemCheck...

6.8CVSS7.5AI score0.07319EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2017/10/26 12:0 a.m.10 views

The vulnerability of D-Link and TRENDnet’s microprogrammed router services allows attackers to execute arbitrary commands or bypass authentication mechanisms, thereby gaining full control over the device.

The vulnerability of D-Link and TRENDnet’s microprogrammed router software services is related to deficiencies in the authentication process when processing the ping command. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the pingaddr parameter...

10CVSS8.2AI score0.82863EPSS
Exploits8References8Affected Software1
Rows per page
Query Builder