| Título | TRENDnet TEW-657BRM 1.00.1 Command Injection |
|---|
| Descrição | A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. There is a remote OS command injection vulnerability in the setup.cgi. The manipulation of the argument wl_enrolee_pin leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. |
|---|
| Fonte | ⚠️ https://github.com/panda666-888/vuls/blob/main/trendnet/tew-657brm/add_wps_client.md |
|---|
| Utilizador | panda_0x1 (UID 87576) |
|---|
| Submissão | 17/03/2026 03h15 (há 20 dias) |
|---|
| Moderação | 01/04/2026 18h47 (16 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 354704 [Trendnet TEW-657BRM 1.00.1 /setup.cgi add_wps_client wl_enrolee_pin Elevação de Privilégios] |
|---|
| Pontos | 19 |
|---|