Vulnerability Details CVE-2023-51833
A command injection issue in TRENDnet TEW-411BRPplus v.2.07_eu that allows a local attacker to execute arbitrary code via the data1 parameter in the debug.cgi page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.8%
CVSS Severity
CVSS v3 Score 8.1
References
- https://warp-desk-89d.notion.site/TEW-411BRPplus-9bafe26e48964be3be12eab47f77203d
- https://www.trendnet.com/support/support-detail.asp?prod=160_TEW-411BRPplus
- https://warp-desk-89d.notion.site/TEW-411BRPplus-9bafe26e48964be3be12eab47f77203d
- https://www.trendnet.com/support/support-detail.asp?prod=160_TEW-411BRPplus
Products affected by CVE-2023-51833
-
cpe:2.3:h:trendnet:tew-411brpplus:-
-
cpe:2.3:o:trendnet:tew-411brpplus_firmware:2.07_eu