Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/02/05 7:23 p.m.4 views

CVE-2026-25532

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6, a vulnerability exists in the WPS Wi-Fi Protected Setup Enrollee implementation where malformed EAP-WSC packets with truncated payloads can cause integer underflow during...

8CVSS5.5AI score0.00213EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/04 5:58 p.m.11 views

CVE-2026-25532

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6, a vulnerability exists in the WPS Wi-Fi Protected Setup Enrollee implementation where malformed EAP-WSC packets with truncated payloads can cause integer underflow during...

6.3CVSS5.5AI score0.00213EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.8 views

PT-2026-6314

Name of the Vulnerable Software and Affected Versions Espressif Internet of Things IOT Development Framework versions 5.1.6 through 5.5.2 Description The Espressif Internet of Things IOT Development Framework contains a flaw in the WPS Wi-Fi Protected Setup Enrollee implementation. Malformed...

6.3CVSS5.6AI score0.00213EPSS
Exploits0References12
OSV
OSV
added 2022/12/30 9:15 p.m.5 views

CVE-2022-46593

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the dostaenrolleewifi function...

9.8CVSS5.8AI score0.00873EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/12/30 12:0 a.m.4 views

PT-2022-27927 · Trendnet · Trendnet Tew755Ap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered via the wps sta enrollee pin parameter in the set sta enrollee pin 24g function. This issue can be exploited, potentially allowing unauthorized access or...

9.8CVSS9.5AI score0.00873EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/12/30 12:0 a.m.4 views

TRENDnet TEW-755AP 缓冲区错误漏洞

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from the lack of size checking of input data in the wpsstaenrolleepin parameter in the dostaenrolleewifi function, which can be exploited by an attacker to execute...

9.8CVSS7.9AI score0.00873EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/12/30 12:0 a.m.5 views

TRENDnet TEW-755AP 操作系统命令注入漏洞

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a command injection vulnerability that stems from the wpsstaenrolleepin parameter in the setstaenrolleepin5g function failing to correctly filter for constructed command special characters, commands, and so on. ...

9.8CVSS8.2AI score0.02291EPSS
Exploits1References2
OSV
OSV
added 2020/06/15 4:15 a.m.3 views

CVE-2020-14077

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action setstaenrolleepinwifi1 or setstaenrolleepinwifi0 with a sufficiently long wpsstaenrolleep...

8.8CVSS7.9AI score0.01783EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/09 12:0 a.m.1 views

D-Link DIR-825 and TRENDnet TEW-632BRP Command Injection Vulnerability (CNVD-2020-16102)

The D-Link DIR-825 is an AC 1200 Wi-Fi dual-band Gigabit LAN/WAN router.The TRENDnet TEW-632BRP is a 300Mbps wireless home router. A command injection vulnerability exists in the D-Link DIR-825 and TRENDnet TEW-632BRP. A remote attacker can exploit this vulnerability to execute arbitrary commands...

9CVSS8.4AI score0.04996EPSS
Exploits1References1
OSV
OSV
added 2019/07/02 1:15 p.m.4 views

CVE-2019-13151

An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the action setstaenrolleepin5g and the key wpsstaenrolleepin...

8.8CVSS7.3AI score0.02052EPSS
Exploits0References1
OSV
OSV
added 2019/05/13 2:29 p.m.4 views

CVE-2018-19990

In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and the vulnerability affects D-Link DIR-822 B1 202KRb06 devices. In the SetWiFiVerifyAlpha.php source code, the WPSPIN parameter is saved in the $rphyinf1."/media/wps/enrollee/pin" and $rphyinf2."/media/wps/enrollee/pi...

9.8CVSS5.8AI score0.41606EPSS
Exploits3References1
Rows per page
Query Builder