CVE-2022-30328
MEDIUM6.5CVSS v3
4.3CVSS v2
0.12%
EPSS (exploit probability)
CWE-352CWE
Description
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The username and password setup for the web interface does not require entering the existing password. A malicious user can change the username and password of the interface.
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Affected routers (1)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch Status |
|---|---|---|---|---|---|
| TRENDnet | TRENDnet TEW-831DR | — |
— | — | Unpatched |