Description
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin parameter in the set_sta_enrollee_pin_5g function.
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://brief-nymphea-813.notion.site/Vul8-TEW755-bof-set_sta_enrollee_pin_5g-60fb8f382256478dbe8d4c9c35e8dd60
Scores
CVSS v3
9.8
EPSS
0.0044
EPSS Percentile
63.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-787
Status
published
Products (1)
trendnet/tew-755ap_firmware
1.13b01
Published
Dec 30, 2022
Tracked Since
Feb 18, 2026