Vulnerability Details CVE-2019-13153
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the Private Port in Add Virtual Server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.048
EPSS Ranking 89.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
Products affected by CVE-2019-13153
-
cpe:2.3:h:trendnet:tew-827dru:-
-
cpe:2.3:o:trendnet:tew-827dru_firmware:-
-
cpe:2.3:o:trendnet:tew-827dru_firmware:1.04b01
-
cpe:2.3:o:trendnet:tew-827dru_firmware:2.04
-
cpe:2.3:o:trendnet:tew-827dru_firmware:2.04b03