Submit #781564: TRENDnet TEW-657BRM 1.00.1 Command Injectioninfo

Title	TRENDnet TEW-657BRM 1.00.1 Command Injection
Description	A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. There is a remote OS command injection vulnerability in the setup.cgi. The manipulation of the argument wl_enrolee_pin leads to command injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.
Source	⚠️ https://github.com/panda666-888/vuls/blob/main/trendnet/tew-657brm/add_wps_client.md
User	panda_0x1 (UID 87576)
Submission	03/17/2026 03:15 (20 days ago)
Moderation	04/01/2026 18:47 (16 days later)
Status	Accepted
VulDB entry	354704 [Trendnet TEW-657BRM 1.00.1 /setup.cgi add_wps_client wl_enrolee_pin os command injection]
Points	19

Want to stay up to date on a daily basis?

Enable the mail alert feature now!