Trendnet Tew-632Brp Firmware vulnerabilities
6 known vulnerabilities affecting trendnet/tew-632brp_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH4
Vulnerabilities
Page 1 of 1
CVE-2024-57590CRITICALCVSS 9.8v1.010b312025-01-27
CVE-2024-57590 [CRITICAL] CWE-77 CVE-2024-57590: TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interfac
TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl interface "ntp_sync.cgi",which allows remote attackers to execute arbitrary commands via parameter "ntp_server" passed to the "ntp_sync.cgi" binary through a POST request.
nvd
CVE-2020-10213HIGHCVSS 8.8v1.010b322020-03-07
CVE-2020-10213 [HIGH] CWE-78 CVE-2020-10213: An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute
An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the wps_sta_enrollee_pin parameter in a set_sta_enrollee_pin.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected.
nvd
CVE-2020-10215HIGHCVSS 8.8v1.010b322020-03-07
CVE-2020-10215 [HIGH] CWE-78 CVE-2020-10215: An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute
An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the dns_query_name parameter in a dns_query.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected.
nvd
CVE-2020-10216HIGHCVSS 8.8v1.010b322020-03-07
CVE-2020-10216 [HIGH] CWE-78 CVE-2020-10216: An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute
An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the date parameter in a system_time.cgi POST request. TRENDnet TEW-632BRP 1.010B32 is also affected.
nvd
CVE-2019-11418CRITICALCVSS 9.8v1.010b322019-04-22
CVE-2019-11418 [CRITICAL] CWE-119 CVE-2019-11418: apply.cgi on the TRENDnet TEW-632BRP 1.010B32 router has a buffer overflow via long strings to the S
apply.cgi on the TRENDnet TEW-632BRP 1.010B32 router has a buffer overflow via long strings to the SOAPACTION:HNAP1 interface.
nvd
CVE-2018-19242HIGHCVSS 8.8v1.010b322018-12-20
CVE-2018-19242 [HIGH] CWE-119 CVE-2018-19242: Buffer overflow in apply.cgi on TRENDnet TEW-632BRP 1.010B32 and TEW-673GRU devices allows attackers
Buffer overflow in apply.cgi on TRENDnet TEW-632BRP 1.010B32 and TEW-673GRU devices allows attackers to hijack the control flow to any attacker-specified location by crafting a POST request payload (with authentication).
nvd