Lucene search
K

30 matches found

Prion
Prion
added 2020/06/15 4:15 a.m.17 views

Stack overflow

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action autoupfw or autouplp with a sufficiently long updatefilename key...

6.5CVSS9AI score0.02237EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/06/15 4:15 a.m.17 views

Stack overflow

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action setstaenrolleepinwifi1 or setstaenrolleepinwifi0 with a sufficiently long wpsstaenrolleep...

6.5CVSS9AI score0.01783EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/15 3:37 a.m.62 views

CVE-2020-14074

TRENDnet TEW-827DRU devices up to version 2.06B04 are affected by a stack-based buffer overflow in the ssi binary. An authenticated user can trigger the overflow by posting to apply.cgi with the action kick_ban_wifi_mac_allow and supplying a sufficiently long qcawifi.wifi0_vap0.maclist key, enabl...

8.8CVSS8.9AI score0.01783EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/15 3:36 a.m.62 views

CVE-2020-14077

TRENDnet TEW-827DRU routers (firmware 2.06B04 and earlier) are affected by a stack-based buffer overflow in the ssi binary. An authenticated user can trigger arbitrary code execution by sending a crafted POST to apply.cgi using the actions set_sta_enrollee_pin_wifi1 or set_sta_enrollee_pin_wifi0 ...

8.8CVSS8.9AI score0.01783EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/06/15 3:36 a.m.63 views

CVE-2020-14078

CVE-2020-14078 affects TRENDnet TEW-827DRU devices with firmware 2.06B04 and earlier. A stack-based buffer overflow in the ssi binary permits an authenticated attacker to execute arbitrary code by POSTing to apply.cgi via the action wifi_captive_portal_login using a sufficiently long REMOTE_ADDR ...

8.8CVSS8.9AI score0.01783EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/06/15 3:36 a.m.29 views

CVE-2020-14078

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action wificaptiveportallogin with a sufficiently long REMOTEADDR key...

9AI score0.01783EPSS
Exploits0References2
CVE
CVE
added 2020/06/15 3:36 a.m.62 views

CVE-2020-14079

TRENDnet TEW-827DRU routers (firmware up to 2.06B04) are affected by a stack-based overflow in the ssi binary. An authenticated user can trigger arbitrary code execution by sending a crafted update_file_name via POST to apply.cgi with action auto_up_fw (or auto_up_lp). The vulnerability affects t...

8.8CVSS8.9AI score0.02237EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/06/15 3:36 a.m.29 views

CVE-2020-14080

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by POSTing to applysec.cgi via the action pingtest with a sufficiently long pingipaddr key...

10AI score0.02369EPSS
Exploits0References2
CVE
CVE
added 2020/06/15 3:36 a.m.66 views

CVE-2020-14080

Trendnet TEW-827DRU devices up to firmware version 2.06B04 are affected by a stack-based buffer overflow in the ssi binary. An unauthenticated attacker can cause arbitrary code execution by sending a specially crafted POST to apply_sec.cgi with action ping_test and a long ping_ipaddr value. The i...

9.8CVSS9.9AI score0.02369EPSS
In wildExploits0References2Affected Software1
CNVD
CNVD
added 2019/07/11 12:0 a.m.2 views

TRENDnet TEW-827DRU Stack Buffer Overflow Vulnerability (CNVD-2019-22208)

The TRENDnet TEW-827DRU is a wireless router from TRENDnet. A buffer overflow vulnerability exists in the ssi binary in the TRENDnet TEW-827DRU using firmware version 2.04B03 and earlier. The vulnerability originates when a network system or product performs an operation on memory without properl...

9.8CVSS7.3AI score0.02767EPSS
Exploits1References1
Rows per page
Query Builder