TRENDnet TEW-811DRU 操作系统命令注入漏洞

The TRENDnet TEW-811DRU is a wireless router from TRENDnet. The TRENDnet TEW-811DRU suffers from an operating system command injection vulnerability that stems from a misuse of the parameter DeviceURL in the file uapply.cgi of the component httpd, which can be exploited by an attacker to cause...

PT-2026-1523

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-811DRU version 1.0.2.0 Description A flaw exists in TRENDnet TEW-811DRU version 1.0.2.0 related to the setDeviceURL function within the uapply.cgi file of the httpd component. Manipulation of the DeviceURL argument can lead to...

PT-2024-19478 · Trendnet · Trendnet Tew-815Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-815DAP version 1.0.2.0 Description: The issue allows for Command Injection via the do setNTP function. An authenticated attacker with administrator privileges can exploit this over the network by sending a malicious POST request...

TRENDnet TEW-815DAP Command Injection Vulnerability

The TRENDnet TEW-815DAP is a wireless access point from Trendnet, Inc. A command injection vulnerability exists in the TRENDnet TEW-815DAP version 1.0.2.0, which stems from the fact that incorrect operation of the parameters NtpDstStart/NtpDstEnd can lead to command injection...

CVE-2021-30605

Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls...

CVE-2018-14812

An uncontrolled search path element DLL Hijacking vulnerability has been identified in Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that...