CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20153
https://notcve.org/view.php?id=CVE-2021-20153
30 Dec 2021 — Trendnet AC2600 TEW-827DRU version 2.08B01 contains a symlink vulnerability in the bittorrent functionality. If enabled, the bittorrent functionality is vulnerable to a symlink attack that could lead to remote code execution on the device. If an end user inserts a flash drive with a malicious symlink on it that the bittorrent client can write downloads to, then a user is able to download arbitrary files to any desired location on the devices filesystem, which could lead to remote code execution. Example dir... • https://www.tenable.com/security/research/tra-2021-54 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20154
https://notcve.org/view.php?id=CVE-2021-20154
30 Dec 2021 — Trendnet AC2600 TEW-827DRU version 2.08B01 contains an security flaw in the web interface. HTTPS is not enabled on the device by default. This results in cleartext transmission of sensitive information such as passwords. Trendnet AC2600 TEW-827DRU versión 2.08B01, contiene un fallo de seguridad en la interfaz web. HTTPS no está habilitado en el dispositivo por defecto. • https://www.tenable.com/security/research/tra-2021-54 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20152
https://notcve.org/view.php?id=CVE-2021-20152
30 Dec 2021 — Trendnet AC2600 TEW-827DRU version 2.08B01 lacks proper authentication to the bittorrent functionality. If enabled, anyone is able to visit and modify settings and files via the Bittorent web client by visiting: http://192.168.10.1:9091/transmission/web/ Trendnet AC2600 TEW-827DRU versión 2.08B01, carece de la autenticación apropiada para la funcionalidad bittorrent. Si está habilitada, cualquiera puede visitar y modificar la configuración y los archivos por medio del cliente web de Bittorent al visitar: ht... • https://www.tenable.com/security/research/tra-2021-54 • CWE-306: Missing Authentication for Critical Function •
CVSS: 9.0EPSS: 3%CPEs: 2EXPL: 1CVE-2021-20159
https://notcve.org/view.php?id=CVE-2021-20159
30 Dec 2021 — Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection. The system log functionality of the firmware allows for command injection as root by supplying a malformed parameter. Trendnet AC2600 TEW-827DRU versión 2.08B01, es vulnerable a una inyección de comandos. La funcionalidad system log del firmware permite una inyección de comandos como root al suministrar un parámetro malformado. • https://www.tenable.com/security/research/tra-2021-54 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2021-20157
https://notcve.org/view.php?id=CVE-2021-20157
30 Dec 2021 — It is possible for an unauthenticated, malicious user to force the device to reboot due to a hidden administrative command. Es posible que un usuario malicioso no autenticado fuerce el reinicio del dispositivo debido a un comando administrativo oculto. • https://www.tenable.com/security/research/tra-2021-54 •
CVSS: 9.8EPSS: 80%CPEs: 2EXPL: 0CVE-2021-20158
https://notcve.org/view.php?id=CVE-2021-20158
30 Dec 2021 — Trendnet AC2600 TEW-827DRU version 2.08B01 contains an authentication bypass vulnerability. It is possible for an unauthenticated, malicous actor to force the change of the admin password due to a hidden administrative command. Trendnet AC2600 TEW-827DRU versión 2.08B01, contiene una vulnerabilidad de omisión de autenticación. Es posible que un actor malicioso no autenticado fuerce el cambio de la contraseña de administrador debido a un comando administrativo oculto. • https://www.tenable.com/security/research/tra-2021-54 • CWE-306: Missing Authentication for Critical Function •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20156
https://notcve.org/view.php?id=CVE-2021-20156
30 Dec 2021 — Trendnet AC2600 TEW-827DRU version 2.08B01 contains an improper access control configuration that could allow for a malicious firmware update. It is possible to manually install firmware that may be malicious in nature as there does not appear to be any signature validation done to determine if it is from a known and trusted source. This includes firmware updates that are done via the automated "check for updates" in the admin interface. If an attacker is able to masquerade as the update server, the device ... • https://www.tenable.com/security/research/tra-2021-54 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-28846
https://notcve.org/view.php?id=CVE-2021-28846
10 Aug 2021 — A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of service due to a logic bug at address 0x40dcd0 when calling fprintf with "%s: key len = %d, too long\n" format. The two variables seem to be put in the wrong order. The vulnerability could be triggered by sending the POST request to apply_cgi with a long and unknown key in the request body. Se presenta una vulnerab... • https://github.com/zyw-200/EQUAFL/blob/main/TRENDnet%20ticket.pdf • CWE-134: Use of Externally-Controlled Format String •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-28845
https://notcve.org/view.php?id=CVE-2021-28845
10 Aug 2021 — Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of service by sending the POST request to apply_cgi via the lang action without a language key. Existe una vulnerabilidad de desviación de puntero nulo en TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03 y TEW-825DAP 1.11B03, que podría permitir a un usuario malintencionado remoto ca... • https://github.com/zyw-200/EQUAFL/blob/main/TRENDnet%20ticket.pdf • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-28844
https://notcve.org/view.php?id=CVE-2021-28844
10 Aug 2021 — Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03 by sending the POST request to apply_cgi via a do_graph_auth action without a session_id key. Se presenta una vulnerabilidad de Desreferencia de Puntero Null en TRENDnet TEW-755AP versión 1.11B03, TEW-755AP2KAC versión 1.11B03, TEW-821DAP2KAC versión 1.11B03 y TEW-825DAP versión 1.11B03, mediante el envío de una petición POST a un apply_cgi por medio de la acción... • https://github.com/zyw-200/EQUAFL/blob/main/TRENDnet%20ticket.pdf • CWE-476: NULL Pointer Dereference •