kuc001

1 exploit Active since Jun 2020
CVE-2020-14080 WRITEUP CRITICAL WRITEUP
TRENDnet TEW-827DRU Firmware < 2.06b04 - Unauthenticated Stack-Based Buffer Overflow via Ping Test
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by POSTing to apply_sec.cgi via the action ping_test with a sufficiently long ping_ipaddr key.
CVSS 9.8