RouterCVE

CVE-2023-24099

HIGH
8.8CVSS v3
CVSS v2
1.03% EPSS (exploit probability)
CWE-787CWE

Description

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected routers (1)

VendorModelMatched viaAffected versionsFixed inPatch Status
TRENDnet TRENDnet TEW-820AP Unpatched

External references