Trendnet Tew-827Dru Firmware vulnerabilities
41 known vulnerabilities affecting trendnet/tew-827dru_firmware.
Total CVEs
41
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL9HIGH23MEDIUM9
Vulnerabilities
Page 1 of 3
CVE-2020-14080P1CRITICALCVSS 9.8Exploited≤ 2.06b042020-06-15
CVE-2020-14080 [CRITICAL] CWE-787 CVE-2020-14080: TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary.
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by POSTing to apply_sec.cgi via the action ping_test with a sufficiently long ping_ipaddr key.
nvd
CVE-2021-20158P2CRITICALCVSS 9.8PoCv2.08b012021-12-30
CVE-2021-20158 [CRITICAL] CWE-306 CVE-2021-20158: Trendnet AC2600 TEW-827DRU version 2.08B01 contains an authentication bypass vulnerability. It is po
Trendnet AC2600 TEW-827DRU version 2.08B01 contains an authentication bypass vulnerability. It is possible for an unauthenticated, malicous actor to force the change of the admin password due to a hidden administrative command.
nvd
CVE-2021-20150P3MEDIUMCVSS 5.3PoCv2.08b012021-12-30
CVE-2021-20150 [MEDIUM] CWE-306 CVE-2021-20150: Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the
Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the setup wizard. Authentication can be bypassed and a user may view information as Admin by manually browsing to the setup wizard and forcing it to redirect to the desired page.
nvd
CVE-2024-28354P2CRITICALCVSS 10.0v2.10b012024-03-15
CVE-2024-28354 [CRITICAL] CWE-77 CVE-2024-28354: There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.@smb[%d].username in the apply.cgi interface, thereby gaining root shell privileges.
nvd
CVE-2019-13278P2CRITICALCVSS 9.8≤ 2.04b032019-07-10
CVE-2019-13278 [CRITICAL] CWE-78 CVE-2019-13278: TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple command injections w
TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple command injections when processing user input for the setup wizard, allowing an unauthenticated user to run arbitrary commands on the device. The vulnerability can be exercised on the local intranet or remotely if remote administration is enabled.
nvd
CVE-2021-20159P2HIGHCVSS 8.8v2.08b012021-12-30
CVE-2021-20159 [HIGH] CWE-78 CVE-2021-20159: Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection. The system log functi
Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection. The system log functionality of the firmware allows for command injection as root by supplying a malformed parameter.
nvd
CVE-2021-20155P2CRITICALCVSS 9.8v2.08b012021-12-30
CVE-2021-20155 [CRITICAL] CWE-798 CVE-2021-20155: Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. It is possible to bac
Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. It is possible to backup and restore device configurations via the management web interface. These devices are encrypted using a hardcoded password of "12345678".
nvd
CVE-2024-28353P2HIGHCVSS 8.8v2.10b012024-03-15
CVE-2024-28353 [HIGH] CWE-77 CVE-2024-28353: There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.config.smb_admin_name in the apply.cgi interface, thereby gaining root shell privileges.
nvd
CVE-2021-20160P2HIGHCVSS 8.8v2.08b012021-12-30
CVE-2021-20160 [HIGH] CWE-78 CVE-2021-20160: Trendnet AC2600 TEW-827DRU version 2.08B01 contains a command injection vulnerability in the smb fun
Trendnet AC2600 TEW-827DRU version 2.08B01 contains a command injection vulnerability in the smb functionality of the device. The username parameter used when configuring smb functionality for the device is vulnerable to command injection as root.
nvd
CVE-2021-20149P2CRITICALCVSS 9.8v2.08b012021-12-30
CVE-2021-20149 [CRITICAL] CWE-863 CVE-2021-20149: Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient access controls for the WAN inte
Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient access controls for the WAN interface. The default iptables ruleset for governing access to services on the device only apply to IPv4. All services running on the devices are accessible via the WAN interface via IPv6 by default.
nvd
CVE-2024-36728P3HIGHCVSS 8.1≤ 2.06b042024-06-03
CVE-2024-36728 [HIGH] CWE-121 CVE-2024-36728: TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary.
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action vlan_setting with a sufficiently long dns1 or dns 2 key.
nvd
CVE-2019-13276P3CRITICALCVSS 9.8≤ 2.04b032019-07-10
CVE-2019-13276 [CRITICAL] CWE-787 CVE-2019-13276: TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains a stack-based buffer overflow
TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by providing a sufficiently long query string when POSTing to any valid cgi, txt, asp, or js file. The vulnerability can be exercised on the local intranet or
nvd
CVE-2021-20151P3CRITICALCVSS 10.0v2.08b012021-12-30
CVE-2021-20151 [CRITICAL] CWE-384 CVE-2021-20151: Trendnet AC2600 TEW-827DRU version 2.08B01 contains a flaw in the session management for the device.
Trendnet AC2600 TEW-827DRU version 2.08B01 contains a flaw in the session management for the device. The router's management software manages web sessions based on IP address rather than verifying client cookies/session tokens/etc. This allows an attacker (whether from a different computer, different web browser on the same machine, etc.) to take
nvd
CVE-2020-14075P3HIGHCVSS 8.8≤ 2.06b042020-06-15
CVE-2020-14075 [HIGH] CWE-78 CVE-2020-14075: TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the
TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the action pppoe_connect, ru_pppoe_connect, or dhcp_connect with the key wan_ifname (or wan0_dns), allowing an authenticated user to run arbitrary commands on the device.
nvd
CVE-2019-13279P3CRITICALCVSS 9.8≤ 2.04b032019-07-10
CVE-2019-13279 [CRITICAL] CWE-787 CVE-2019-13279: TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple stack-based buffer o
TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple stack-based buffer overflows when processing user input for the setup wizard, allowing an unauthenticated user to execute arbitrary code. The vulnerability can be exercised on the local intranet or remotely if remote administration is enabled.
nvd
CVE-2020-14076P3HIGHCVSS 8.8≤ 2.06b042020-06-15
CVE-2020-14076 [HIGH] CWE-787 CVE-2020-14076: TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary.
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action st_dev_connect, st_dev_disconnect, or st_dev_rconnect with a sufficiently long wan_type key.
nvd
CVE-2020-14079P3HIGHCVSS 8.8≤ 2.06b042020-06-15
CVE-2020-14079 [HIGH] CWE-787 CVE-2020-14079: TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary.
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action auto_up_fw (or auto_up_lp) with a sufficiently long update_file_name key.
nvd
CVE-2020-14081P3HIGHCVSS 8.8≤ 2.06b042020-06-15
CVE-2020-14081 [HIGH] CWE-78 CVE-2020-14081: TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the
TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the action send_log_email with the key auth_acname (or auth_passwd), allowing an authenticated user to run arbitrary commands on the device.
nvd
CVE-2019-13151P3HIGHCVSS 8.8fixed in 2.05b112019-07-02
CVE-2019-13151 [HIGH] CWE-78 CVE-2019-13151: An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the action set_sta_enrollee_pin_5g and the key wps_sta_enrollee_pin.
nvd
CVE-2019-13150P3HIGHCVSS 8.8fixed in 2.05b112019-07-02
CVE-2019-13150 [HIGH] CWE-77 CVE-2019-13150: An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication). The command injection exists in the key ip_addr.
nvd
1 / 3Next →