CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-20149

Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient access controls for the WAN interface. The default iptables ruleset for governing access to services on the device only apply to IPv4. All services running on the devices are accessible via the WAN interface via IPv6 by default.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.1%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://www.tenable.com/security/research/tra-2021-54
https://www.tenable.com/security/research/tra-2021-54

Products affected by CVE-2021-20149

Trendnet » Tew-827dru » Version: 2.0

cpe:2.3:h:trendnet:tew-827dru:2.0
Trendnet » Tew-827dru Firmware » Version: 2.08b01

cpe:2.3:o:trendnet:tew-827dru_firmware:2.08b01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-20149

Products

Pricing

Contact Us