1 results (0.002 seconds)
CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 1
CVE-2024-0919 – TRENDnet TEW-815DAP POST Request do_setNTP command injection
https://notcve.org/view.php?id=CVE-2024-0919
A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function do_setNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely. • https://vuldb.com/?ctiid.252123 https://vuldb.com/?id.252123 https://warp-desk-89d.notion.site/TEW-815DAP-94a631c20dee4f399268dbcc880f1f4c?pvs=4 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •