CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-20154

Trendnet AC2600 TEW-827DRU version 2.08B01 contains an security flaw in the web interface. HTTPS is not enabled on the device by default. This results in cleartext transmission of sensitive information such as passwords.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.2%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 4.3

References

https://www.tenable.com/security/research/tra-2021-54
https://www.tenable.com/security/research/tra-2021-54

Products affected by CVE-2021-20154

Trendnet » Tew-827dru » Version: 2.0

cpe:2.3:h:trendnet:tew-827dru:2.0
Trendnet » Tew-827dru Firmware » Version: 2.08b01

cpe:2.3:o:trendnet:tew-827dru_firmware:2.08b01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-20154

Products

Pricing

Contact Us