CVE-2013-3098
published 2014-02-04CVE-2013-3098: Multiple cross-site request forgery (CSRF) vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the…
PriorityP434medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
1.20%
64.4th percentile
Multiple cross-site request forgery (CSRF) vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the authentication of administrators for requests that (1) change admin credentials in a request to setSysAdm.cgi, (2) enable remote management or (3) enable port forwarding in an Apply action to uapply.cgi, or (4) have unspecified impact via a request to setNTP.cgi. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| trendnet | tew-812dru_firmware | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gj55-7424-ff6c: Multiple cross-site request forgery (CSRF) vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1
ghsa_unreviewed·2022-05-17
CVE-2013-3098 [MEDIUM] CWE-352 GHSA-gj55-7424-ff6c: Multiple cross-site request forgery (CSRF) vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1
Multiple cross-site request forgery (CSRF) vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the authentication of administrators for requests that (1) change admin credentials in a request to setSysAdm.cgi, (2) enable remote management or (3) enable port forwarding in an Apply action to uapply.cgi, or (4) have unspecified impact via a request to setNTP.cgi. NOTE: some of these details are obtained from third party information.
GHSA
GHSA-wqp8-cw7x-4pfr: TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) wan network prefix to i
ghsa_unreviewed·2022-05-17·CVSS 6.8
CVE-2013-3365 [MEDIUM] CWE-78 GHSA-wqp8-cw7x-4pfr: TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) wan network prefix to i
TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) wan network prefix to internet/ipv6.asp; (2) remote port to adm/management.asp; (3) pptp username, (4) pptp password, (5) ip, (6) gateway, (7) l2tp username, or (8) l2tp password to internet/wan.asp; (9) NtpDstStart, (10) NtpDstEnd, or (11) NtpDstOffset to adm/time.asp; or (12) device url to adm/management.asp. NOTE: vectors 9, 10, and 11 can be exploited by unauthenticated remote attackers by leveraging CVE-2013-3098.
No detection rules found.
No writeups or analysis indexed.
http://infosec42.blogspot.com/2013/07/exploit-trendnet-tew-812dru-csrfcommand.htmlhttp://osvdb.org/95803http://secunia.com/advisories/54310http://securityevaluators.com/content/case-studies/routers/Vulnerability_Catalog.pdfhttp://securityevaluators.com/knowledge/case_studies/routers/trendnet_tew-812dru.phphttp://infosec42.blogspot.com/2013/07/exploit-trendnet-tew-812dru-csrfcommand.htmlhttp://osvdb.org/95803http://secunia.com/advisories/54310http://securityevaluators.com/content/case-studies/routers/Vulnerability_Catalog.pdfhttp://securityevaluators.com/knowledge/case_studies/routers/trendnet_tew-812dru.php
2014-02-04
Published