CVE-2023-0638

A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. This vulnerability affects unknown code of the component Web Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-220018 is the identifier assigned to this vulnerability.
References
Link Resource
https://vuldb.com/?ctiid.220018 Permissions Required Third Party Advisory
https://vuldb.com/?id.220018 Permissions Required Third Party Advisory
https://vuldb.com/?ctiid.220018 Permissions Required Third Party Advisory
https://vuldb.com/?id.220018 Permissions Required Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:trendnet:tew-811dru_firmware:1.0.10.0:*:*:*:*:*:*:*
cpe:2.3:h:trendnet:tew-811dru:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:37

Type Values Removed Values Added
References () https://vuldb.com/?ctiid.220018 - Permissions Required, Third Party Advisory () https://vuldb.com/?ctiid.220018 - Permissions Required, Third Party Advisory
References () https://vuldb.com/?id.220018 - Permissions Required, Third Party Advisory () https://vuldb.com/?id.220018 - Permissions Required, Third Party Advisory
CVSS v2 : 8.3
v3 : 9.8
v2 : 8.3
v3 : 7.2

Information

Published : 2023-02-02 09:15

Updated : 2024-11-21 07:37


NVD link : CVE-2023-0638

Mitre link : CVE-2023-0638

CVE.ORG link : CVE-2023-0638


JSON object : View

Products Affected

trendnet

  • tew-811dru_firmware
  • tew-811dru
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')