1 results (0.001 seconds)
CVSS: 9.0EPSS: 6%CPEs: 2EXPL: 1
CVSS: 9.0EPSS: 6%CPEs: 2EXPL: 1CVE-2024-0919 – TRENDnet TEW-815DAP POST Request do_setNTP command injection
https://notcve.org/view.php?id=CVE-2024-0919
26 Jan 2024 — A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function do_setNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely. • https://vuldb.com/?ctiid.252123 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •