TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An authenticated attacker with administrator privileges can leverage this vulnerability over the network via a malicious POST request.
References
Configurations
No configuration.
History
21 Nov 2024, 08:56
Type | Values Removed | Values Added |
---|---|---|
References | () https://warp-desk-89d.notion.site/TEW-815DAP-94a631c20dee4f399268dbcc880f1f4c - | |
References | () https://www.trendnet.com/support/support-detail.asp?prod=105_TEW-815DAP - |
03 Jul 2024, 01:47
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-77 | |
Summary |
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.4 |
30 Apr 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-30 19:15
Updated : 2024-11-21 08:56
NVD link : CVE-2024-22546
Mitre link : CVE-2024-22546
CVE.ORG link : CVE-2024-22546
JSON object : View
Products Affected
No product.
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')