CVE-2023-24097

Description

** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formPasswordAuth. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Related CPE's

otrendnettew-820ap_firmware1.01.b01*******

htrendnettew-820ap1.0r*******

References

https://github.com/chunklhit/cve/blob/master/TRENDNet/TEW-820AP/03/README.md

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io