Tew-755ap Firmware Security Vulnerabilities and Issues — Tew-755ap Firmware CVE List

Lucene search

TrendnetTew-755ap Firmware

26 matches found

CVE•added 2022/12/30 9:15 p.m.•69 views

CVE-2022-46580

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the user_edit_page parameter in the wifi_captive_portal function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•59 views

CVE-2022-46600

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_24g function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•58 views

CVE-2022-46601

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setbg_num parameter in the icp_setbg_img (sub_41DD68) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•52 views

CVE-2022-46590

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.netstat_rsname parameter in the tools_netstat (sub_41E730) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2021/08/10 8:15 p.m.•48 views

CVE-2021-28845

Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of service by sending the POST request to apply_cgi via the lang action without a language key.

7.5CVSS7.3AI score0.00336EPSS

CVE•added 2022/12/30 9:15 p.m.•47 views

CVE-2022-46593

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the do_sta_enrollee_wifi function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•47 views

CVE-2022-46598

TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_5g function.

9.8CVSS9.8AI score0.01454EPSS

CVE•added 2022/12/30 9:15 p.m.•44 views

CVE-2022-46583

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the reboot_type parameter in the wizard_ipv6 (sub_41C380) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•43 views

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%d_vap%d.maclist parameter in the kick_ban_wifi_mac_allow (sub_415B00) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•42 views

CVE-2022-46597

TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the sys_service parameter in the setup_wizard_mydlink (sub_4104B8) function.

9.8CVSS9.8AI score0.01141EPSS

CVE•added 2022/12/30 9:15 p.m.•40 views

CVE-2022-46582

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the login_name parameter in the do_graph_auth (sub_4061E0) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•39 views

CVE-2022-46581

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.nslookup_target parameter in the tools_nslookup function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•39 views

CVE-2022-46585

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the REMOTE_USER parameter in the get_access (sub_45AC2C) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•39 views

CVE-2022-46592

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the set_sta_enrollee_pin_5g function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•39 views

CVE-2022-46594

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the update_file_name parameter in the auto_up_fw (sub_420A04) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2021/08/10 7:15 p.m.•35 views

CVE-2021-28842

Null Pointer Deference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial os service by sending the POST request to apply_cgi via action do_graph_auth without login_name ke...

7.5CVSS7.4AI score0.00336EPSS

CVE•added 2022/12/30 9:15 p.m.•35 views

CVE-2022-46596

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the del_num parameter in the icp_delete_img (sub_41DEDC) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•35 views

CVE-2022-46599

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setlogo_num parameter in the icp_setlogo_img (sub_41DBF4) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2021/08/10 7:15 p.m.•34 views

CVE-2021-28843

Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03 by sending the POST request to apply_cgi with an unknown action name.

7.5CVSS7.4AI score0.00336EPSS

CVE•added 2021/08/10 7:15 p.m.•34 views

CVE-2021-28844

7.5CVSS7.4AI score0.00336EPSS

CVE•added 2022/12/30 9:15 p.m.•34 views

CVE-2022-46591

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the reject_url parameter in the reject (sub_41BD60) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2021/08/10 7:15 p.m.•33 views

CVE-2021-28841

Null Pointer Dereference vulnerability in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of service by sending a POST request to apply_cgi via an action ping_test without a ping_ipaddr key.

7.5CVSS7.4AI score0.00336EPSS

CVE•added 2022/12/30 9:15 p.m.•33 views

CVE-2022-46588

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the sys_service parameter in the setup_wizard_mydlink (sub_4104B8) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2022/12/30 9:15 p.m.•29 views

CVE-2022-46584

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%d_vap%d.maclist parameter in the kick_ban_wifi_mac_deny (sub_415D7C) function.

9.8CVSS9.6AI score0.00121EPSS

CVE•added 2021/08/10 8:15 p.m.•28 views

CVE-2021-28846

A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of service due to a logic bug at address 0x40dcd0 when calling fprintf with "%s: key len = %d, too long\n"...

6.5CVSS6.3AI score0.00308EPSS

CVE•added 2022/12/30 9:15 p.m.•28 views

CVE-2022-46589

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo.netstat_option parameter in the tools_netstat (sub_41E730) function.

9.8CVSS9.6AI score0.00121EPSS