johnawm of HIT-IDS ChunkL Team

6 exploits Active since Jan 2023
CVE-2022-47065 WRITEUP HIGH WRITEUP
TrendNet TEW-820AP v1.0R Firmware 1.01.B01 - Stack Overflow via submit-url Parameter
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formNewSchedule. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS 8.8
CVE-2023-24095 WRITEUP HIGH WRITEUP
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R - RCE
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formSystemCheck. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS 8.8
CVE-2023-24096 WRITEUP HIGH WRITEUP
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R - Code Injection
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the newpass parameter at /formPasswordSetup. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS 8.8
CVE-2023-24097 WRITEUP HIGH WRITEUP
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R - RCE
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formPasswordAuth. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS 8.8
CVE-2023-24098 WRITEUP HIGH WRITEUP
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R - Code Injection
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the submit-url parameter at /formSysLog. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS 8.8
CVE-2023-24099 WRITEUP HIGH WRITEUP
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R - Code Injection
TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS 8.8