Vulnerabilities > Trendnet > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-30 CVE-2022-46597 OS Command Injection vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the sys_service parameter in the setup_wizard_mydlink (sub_4104B8) function.
network
low complexity
trendnet CWE-78
critical
 9.8
9.8
2022-12-30 CVE-2022-46598 OS Command Injection vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_5g function.
network
low complexity
trendnet CWE-78
critical
 9.8
9.8
2022-12-30 CVE-2022-46599 Out-of-bounds Write vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setlogo_num parameter in the icp_setlogo_img (sub_41DBF4) function.
network
low complexity
trendnet CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-46600 Out-of-bounds Write vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the action set_sta_enrollee_pin_24g function.
network
low complexity
trendnet CWE-787
critical
 9.8
9.8
2022-12-30 CVE-2022-46601 Out-of-bounds Write vulnerability in Trendnet Tew-755Ap Firmware 1.13B01
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setbg_num parameter in the icp_setbg_img (sub_41DD68) function.
network
low complexity
trendnet CWE-787
critical
 9.8
9.8
2022-08-28 CVE-2022-37053 Code Injection vulnerability in Trendnet Tew733Gr Firmware 1.03B01
TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htdocs/upnpinc/gena.php.
network
low complexity
trendnet CWE-94
critical
 9.8
9.8
2022-08-28 CVE-2022-38556 Improper Authentication vulnerability in Trendnet Tew733Gr Firmware 1.03B01
Trendnet TEW733GR v1.03B01 contains a Static Default Credential vulnerability in /etc/init0.d/S80telnetd.sh.
network
low complexity
trendnet CWE-287
critical
 9.8
9.8
2022-06-16 CVE-2022-30329 OS Command Injection vulnerability in Trendnet Tew-831Dr Firmware 1.0601.130.1.1356
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices.
network
low complexity
trendnet CWE-78
critical
 10.0
10
2021-12-30 CVE-2021-20159 OS Command Injection vulnerability in Trendnet Tew-827Dru Firmware 2.08B01
Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection.
network
low complexity
trendnet CWE-78
critical
 9.0
9.0
2021-12-30 CVE-2021-20160 OS Command Injection vulnerability in Trendnet Tew-827Dru Firmware 2.08B01
Trendnet AC2600 TEW-827DRU version 2.08B01 contains a command injection vulnerability in the smb functionality of the device.
network
low complexity
trendnet CWE-78
critical
 9.0
9.0