Shodan
Vulnerabilities
Vulnerable Software
Trendnet:  Security Vulnerabilities
CVE-2019-13148
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the UDP Ports To Open in Add Gaming Rule.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13149
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the key passwd in Routing RIP Settings.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13150
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication). The command injection exists in the key ip_addr.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13151
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the action set_sta_enrollee_pin_5g and the key wps_sta_enrollee_pin.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13152
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the IP Address in Add Gaming Rule.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13153
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the Private Port in Add Virtual Server.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13154
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the TCP Ports To Open in Add Gaming Rule.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-13155
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the IP Address in Add Virtual Server.
CVSS Score
8.8
EPSS Score
0.048
Published
2019-07-02
CVE-2019-11417
system.cgi on TRENDnet TV-IP110WN cameras has a buffer overflow caused by an inadequate source-length check before a strcpy operation in the respondAsp function. Attackers can exploit the vulnerability by using the languse parameter with a long string. This affects 1.2.2 build 28, 64, 65, and 68.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-04-22
CVE-2019-11418
apply.cgi on the TRENDnet TEW-632BRP 1.010B32 router has a buffer overflow via long strings to the SOAPACTION:HNAP1 interface.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-04-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved