Description
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the user_edit_page parameter in the wifi_captive_portal function.
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://brief-nymphea-813.notion.site/Vul6-TEW755-bof-wifi_captive_portal-d2b3d37344564ed4b3948a471d1eeb11
Scores
CVSS v3
9.8
EPSS
0.0044
EPSS Percentile
63.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-787
Status
published
Products (1)
trendnet/tew-755ap_firmware
1.13b01
Published
Dec 30, 2022
Tracked Since
Feb 18, 2026