TRENDnet TEW-651BR 2.04B1 devices Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) Vulnerability
TRENDnet TEW-651BR 2.04B1 devices suffers from improper neutralization of special elements used in an os command (‘OS Command Injection’) vulnerability
The information has been provided by Vendor
The original article can be found at:https://www.trendnet.com/support/
An issue was discovered on TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices. OS command injection occurs through the get_set.ccp lanHostCfg_HostName_220.127.116.11.0 parameter.
TRENDnet TEW-651BR 2.04B1 devices
TRENDnet TEW-652BRP 3.04b01 devices
TRENDnet TEW-652BRU 1.00b12 devices