Trendnet: >> Tew-827dru Firmware >> 2.10b01 Security Vulnerabilities
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.@smb[%d].username in the apply.cgi interface, thereby gaining root shell privileges.
CVSS Score
10.0
EPSS Score
0.012
Published
2024-03-15
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.config.smb_admin_name in the apply.cgi interface, thereby gaining root shell privileges.
CVSS Score
8.8
EPSS Score
0.037
Published
2024-03-15