Description
system.cgi on TRENDnet TV-IP110WN cameras has a buffer overflow caused by an inadequate source-length check before a strcpy operation in the respondAsp function. Attackers can exploit the vulnerability by using the languse parameter with a long string. This affects 1.2.2 build 28, 64, 65, and 68.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://github.com/zyw-200/IOTFuzzer/blob/master/Trendnet_response.png
Scores
CVSS v3
9.8
EPSS
0.0046
EPSS Percentile
64.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
CWE-787
Status
published
Products (4)
trendnet/tv-ip110wn_firmware
1.2.2.28
trendnet/tv-ip110wn_firmware
1.2.2.64
trendnet/tv-ip110wn_firmware
1.2.2.65
trendnet/tv-ip110wn_firmware
1.2.2.68
Published
Apr 22, 2019
Tracked Since
Feb 18, 2026