TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
References
Link | Resource |
---|---|
https://github.com/chunklhit/cve/blob/master/TRENDNet/TEW-820AP/07/README.md | Exploit Third Party Advisory |
https://github.com/chunklhit/cve/blob/master/TRENDNet/TEW-820AP/07/README.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 07:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/chunklhit/cve/blob/master/TRENDNet/TEW-820AP/07/README.md - Exploit, Third Party Advisory |
11 Apr 2024, 01:18
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
07 Nov 2023, 04:08
Type | Values Removed | Values Added |
---|---|---|
Summary | TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. |
Information
Published : 2023-01-23 15:15
Updated : 2024-11-21 07:47
NVD link : CVE-2023-24099
Mitre link : CVE-2023-24099
CVE.ORG link : CVE-2023-24099
JSON object : View
Products Affected
trendnet
- tew-820ap_firmware
- tew-820ap
CWE
CWE-787
Out-of-bounds Write