20 matches found
EUVD-2022-49404
Malicious code in bioql PyPI...
EUVD-2022-49402
Malicious code in bioql PyPI...
EUVD-2022-49397
Malicious code in bioql PyPI...
CVE-2022-46592
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the setstaenrolleepin5g function...
TRENDnet TEW-755AP stack overflow vulnerability (CNVD-2023-18954)
The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that stems from a lack of size checking of input data in the wpsstaenrolleepin parameter in the setstaenrolleepin24g function, which can be exploited by an attacker to execute...
CVE-2022-46600
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the action setstaenrolleepin24g function...
Command injection
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wpsstaenrolleepin parameter in the action setstaenrolleepin5g function...
CVE-2022-46600
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the action setstaenrolleepin24g function...
CVE-2022-46592
TRENDnet TEW755AP 1.13B01 contains a stack overflow in the wps_sta_enrollee_pin parameter of the set_sta_enrollee_pin_5g function. This vulnerability (CVE-2022-46592) has a CVSS v3.1 base score of 9.8 (CRITICAL) with NETWORK attack vector, LOW attack complexity, no privileges required, and no use...
CVE-2022-46600
The CVE-2022-46600 entry concerns TRENDnet TEW755AP devices (firmware 1.13B01) with a stack overflow in the wps_sta_enrollee_pin parameter inside the action set_sta_enrollee_pin_24g function. Technical details across sources consistently identify a lack of input size checks in this parameter, lea...
CVE-2022-46593
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the dostaenrolleewifi function...
CVE-2022-46598
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wpsstaenrolleepin parameter in the action setstaenrolleepin5g function...
CVE-2022-46592
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the setstaenrolleepin5g function...
CVE-2022-46593
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the dostaenrolleewifi function...
CVE-2022-46600
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wpsstaenrolleepin parameter in the action setstaenrolleepin24g function...
CVE-2022-46598
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wpsstaenrolleepin parameter in the action setstaenrolleepin5g function...
CVE-2020-14077
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action setstaenrolleepinwifi1 or setstaenrolleepinwifi0 with a sufficiently long wpsstaenrolleep...
Stack overflow
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action setstaenrolleepinwifi1 or setstaenrolleepinwifi0 with a sufficiently long wpsstaenrolleep...
CVE-2020-14077
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action setstaenrolleepinwifi1 or setstaenrolleepinwifi0 with a sufficiently long wpsstaenrolleep...
CVE-2019-13151
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi exploitable with authentication via the action setstaenrolleepin5g and the key wpsstaenrolleepin...