278 matches found
CVE-2019-13149
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the key passwd in Routing RIP Settings...
CVE-2019-13148
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the UDP Ports To Open in Add Gaming Rule...
CVE-2019-13153
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the Private Port in Add Virtual Server...
Command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication. The command injection exists in the key ipaddr...
CVE-2019-13151
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the action setstaenrolleepin5g and the key wpsstaenrolleepin...
Command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Virtual Server...
Command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the Private Port in Add Virtual Server...
Command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Gaming Rule...
Command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the TCP Ports To Open in Add Gaming Rule...
CVE-2019-13155
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Virtual Server...
CVE-2019-13155
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Virtual Server...
CVE-2019-13155
TRENDnet TEW-827DRU firmware before 2.05B11 contains a command-injection vulnerability in apply.cgi exploitable with authentication via the IP Address in Add Virtual Server. Affected component: router firmware (TEW-827DRU). Root cause: input handling in Add Virtual Server allows execution of arbi...
CVE-2019-13154
TRENDnet TEW-827DRU firmware prior to 2.05B11 contains a command injection in apply.cgi (exploitable with authentication) via the TCP Ports To Open in Add Gaming Rule. Root cause: improper filtering of externally entered data during command construction. Impact: potential unauthorized command exe...
CVE-2019-13154
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the TCP Ports To Open in Add Gaming Rule...
CVE-2019-13153
TRENDnet TEW-827DRU devices are affected by CVE-2019-13153 (firmware before 2.05B11). The issue is a command injection in apply.cgi reachable via the Private Port in Add Virtual Server, exploitable with authentication. Multiple connected sources confirm the vulnerability details and affected firm...
CVE-2019-13153
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the Private Port in Add Virtual Server...
CVE-2019-13152
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the IP Address in Add Gaming Rule...
CVE-2019-13152
CVE-2019-13152 affects TRENDnet TEW-827DRU firmware prior to 2.05B11. The issue is a command injection in the apply.cgi endpoint triggered via the IP Address field in Add Gaming Rule, exploitable with authentication. Public documents consistently describe the vulnerable component as apply.cgi and...
CVE-2019-13151
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the action setstaenrolleepin5g and the key wpsstaenrolleepin...
CVE-2019-13150
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication. The command injection exists in the key ipaddr...