CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42813
https://notcve.org/view.php?id=CVE-2024-42813
19 Aug 2024 — In TRENDnet TEW-752DRU FW1.03B01, there is a buffer overflow vulnerability due to the lack of length verification for the service field in gena.cgi. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands. • https://gist.github.com/XiaoCurry/204680035c1efffa27d14956820ad928 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-33007
https://notcve.org/view.php?id=CVE-2022-33007
27 Jun 2022 — TRENDnet Wi-Fi routers TEW751DR v1.03 and TEW-752DRU v1.03 were discovered to contain a stack overflow via the function genacgi_main. Se ha detectado que los routers Wi-Fi TEW751DR versión v1.03 y TEW-752DRU versión v1.03 de TRENDnet, contienen un desbordamiento de pila por medio de la función genacgi_main • https://github.com/fxc233/CVE/blob/main/bufferoverflow.md • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 1CVE-2018-7034
https://notcve.org/view.php?id=CVE-2018-7034
14 Feb 2018 — TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php. Los dispositivos TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01 y TEW733GR v1.03B01 permiten la omisión de autenticación mediante un valor AUTHORIZED_GROUP=1, tal y como demuestra una petición en getcfg.php. • https://blogs.securiteam.com/index.php/archives/3627 • CWE-287: Improper Authentication •