Trendnet: >> Tew-929dru Firmware >> 1.0.0.10 Security Vulnerabilities
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.
CVSS Score
8.0
EPSS Score
0.0
Published
2025-02-28
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name function on the /addschedule.htm page.
CVSS Score
4.8
EPSS Score
0.0
Published
2025-02-28
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the configname parameter on the /cbi_addcert.htm page.
CVSS Score
4.8
EPSS Score
0.0
Published
2025-02-28
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the /captive_portal.htm page.
CVSS Score
4.8
EPSS Score
0.0
Published
2025-02-28