Vulnerabilities > Trendnet > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-30 CVE-2022-46597 OS Command Injection vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the sys_service parameter in the setup_wizard_mydlink (sub_4104B8) function.
network
low complexity
trendnet CWE-78
critical
 9.8
9.8
2022-12-30 CVE-2022-46598 OS Command Injection vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_5g function.
network
low complexity
trendnet CWE-78
critical
 9.8
9.8
2022-12-30 CVE-2022-46599 Out-of-bounds Write vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setlogo_num parameter in the icp_setlogo_img (sub_41DBF4) function.
network
low complexity
trendnet CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-46600 Out-of-bounds Write vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_24g function.
network
low complexity
trendnet CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-46601 Out-of-bounds Write vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setbg_num parameter in the icp_setbg_img (sub_41DD68) function.
network
low complexity
trendnet CWE-787
critical
 9.8
9.8
2022-08-28 CVE-2022-37053 Code Injection vulnerability in Trendnet Tew733Gr Firmware 1.03B01
TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htdocs/upnpinc/gena.php.
network
low complexity
trendnet CWE-94
critical
 9.8
9.8
2022-08-28 CVE-2022-38556 Improper Authentication vulnerability in Trendnet Tew733Gr Firmware 1.03B01
Trendnet TEW733GR v1.03B01 contains a Static Default Credential vulnerability in /etc/init0.d/S80telnetd.sh.
network
low complexity
trendnet CWE-287
critical
 9.8
9.8
2022-06-16 CVE-2022-30329 OS Command Injection vulnerability in Trendnet Tew-831Dr Firmware 1.0601.130.1.1356
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices.
network
low complexity
trendnet CWE-78
critical
 9.8
9.8
2022-05-11 CVE-2021-33315 Improper Input Validation vulnerability in Trendnet products
The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from an integer underflow vulnerability.
network
low complexity
trendnet CWE-20
critical
 9.8
9.8
2022-05-11 CVE-2021-33316 Improper Input Validation vulnerability in Trendnet products
The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from an integer underflow vulnerability.
network
low complexity
trendnet CWE-20
critical
 9.8
9.8