EUVD-2025-206251

A vulnerability was detected in TRENDnet TEW-713RE 1.02. The impacted element is an unknown function of the file /goformX/formFSrvX. The manipulation of the argument SZCMD results in os command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. The...

EUVD-2019-3078

Malware in sbrugna...

EUVD-2021-19280

Malware in sbrugna...

EUVD-2021-15496

Malware in sbrugna...

EUVD-2022-49404

Malicious code in bioql PyPI...

EUVD-2023-12674

Malicious code in bioql PyPI...

EUVD-2023-12652

Malicious code in bioql PyPI...

EUVD-2025-8685

Malicious code in bioql PyPI...

EUVD-2024-53634

Malicious code in bioql PyPI...

EUVD-2023-12653

Malicious code in bioql PyPI...

EUVD-2023-12672

Malicious code in bioql PyPI...

CVE-2025-8758

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

CVE-2025-44649

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03, the first item of exchagemode is set to aggressive. Aggressive mode in IKE Phase 1 exposes identity information in plaintext, is vulnerable to offline dictionary attacks, and lacks flexibility in negotiating security...

CVE-2025-44647

CVE-2025-44647 affects TRENDnet TEW-WLC100P (2.03b03). The strongSwan config enables the option i_dont_care_about_security_and_use_aggressive_mode_psk, allowing IKE Responders to use IKEv1 Aggressive Mode with PSK and conduct offline attacks on the PSK hash. Metrics indicate CVSS v3.1 base score ...

CVE-2024-22545

An issue was discovered in TRENDnet TEW-824DRU version 1.04b01, allows unauthenticated attackers to execute arbitrary code via the system.ntp.server parameter in the sub420AE0 function. The attack can be launched remotely...

CVE-2023-51147

Buffer Overflow vulnerability in TRENDnet Trendnet AC1200 TEW-821DAP with firmware version 3.00b06 allows an attacker to execute arbitrary code via the admmodpwd action...

CVE-2022-46599

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setlogonum parameter in the icpsetlogoimg sub41DBF4 function...

CVE-2022-46598

TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wpsstaenrolleepin parameter in the action setstaenrolleepin5g function...

CVE-2022-30328

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The username and password setup for the web interface does not require entering the existing password. A malicious user can change the username and password of the interface...

CVE-2021-28844

Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03 by sending the POST request to applycgi via a dographauth action without a sessionid key...