Command Injection Vulnerability in Trendnet AC2600 Router
CVE-2021-20160
8.8HIGH
What is CVE-2021-20160?
The Trendnet AC2600 TEW-827DRU router is vulnerable to command injection through its SMB functionality. An attacker can exploit this vulnerability by manipulating the username parameter during configuration, potentially allowing unauthorized commands to be executed with root privileges. This issue highlights the importance of securing network devices against injection attacks to prevent unauthorized access and protect sensitive data.
Affected Version(s)
Trendnet AC2600 TEW-827DRU 2.08B01
