Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentMitreVULNRICHMENT:CVE-2023-24099
HistoryJan 23, 2023 - 12:00 a.m.

CVE-2023-24099

2023-01-2300:00:00
mitre
github.com
3
trendnet
easy-upgrader
tew-820ap
firmware
stack overflow
username parameter
arbitrary code
payload
vulnerability
maintenance.

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

46.0%

SSVC

Exploitation

poc

Automatable

no

Technical Impact

partial

JSON

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:trendnet:tew-820ap_firmware:1.01.b01:*:*:*:*:*:*:*"
    ],
    "vendor": "trendnet",
    "product": "tew-820ap_firmware",
    "versions": [
      {
        "status": "affected",
        "version": "1.01.b01"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

cvelist 1
cnvd 1
nvd 1
cve 1
prion 1
cvelist
cvelist
CVE-2023-24099
2023-01-23 00:00:00
cnvd
cnvd
TRENDnet TEW-820AP Stack Overflow Vulnerability
2023-02-03 00:00:00
nvd
nvd
CVE-2023-24099
2023-01-23 15:15:18
cve
cve
CVE-2023-24099
2023-01-23 15:15:18
prion
prion
Stack overflow
2023-01-23 15:15:00

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

46.0%

SSVC

Exploitation

poc

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2023-24099
cvelist1cnvd1nvd1cve1prion1