CVE-2021-20151
CVE-2021-20151 affects Trendnet AC2600 TEW-827DRU (firmware 2.08B01). The root cause is session management that relies on IP address rather than validating cookies/session tokens, enabling session takeover if the attacker can spoof or take over the original IP. The CVSS vectors indicate network a...