CVE-2023-0638
HIGHTRENDnet TEW-811DRU 1.0.10.0 - Command Injection via Web Interface
Title source: llmDescription
A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. This vulnerability affects unknown code of the component Web Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-220018 is the identifier assigned to this vulnerability.
References (2)
Core 2
Core References
Permissions Required, Third Party Advisory vdb-entry
technical-description
exploit
https://vuldb.com/?id.220018
Permissions Required, Third Party Advisory signature
https://vuldb.com/?ctiid.220018
Scores
CVSS v3
7.2
EPSS
0.0091
EPSS Percentile
76.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-77
Status
published
Products (1)
trendnet/tew-811dru_firmware
1.0.10.0
Published
Feb 02, 2023
Tracked Since
Feb 18, 2026