Trendnet: >> Tv-Ip1314pi Firmware Security Vulnerabilities
An issue was discovered in libremote_dbg.so on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Filtering of debug information is mishandled during use of popen. Consequently, an attacker can bypass validation and execute a shell command.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-01-09
A stack-based buffer overflow was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices, leading to arbitrary command execution. This occurs because of lack of length validation during an sscanf of a user-entered scale field in the RTSP playback function of davinci.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-01-09
An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings.
CVSS Score
9.8
EPSS Score
0.033
Published
2024-01-09