Wi-Fi Security Flaw in TRENDnet TEW-831DR Routers
CVE-2022-30325

8.8HIGH

Key Information:

Vendor: Trendnet
Status: Tew-831dr Firmware
Vendor: CVE Published:; 16 June 2022

What is CVE-2022-30325?

A significant security issue has been identified in TRENDnet TEW-831DR routers, where the default pre-shared key for Wi-Fi networks can be easily compromised. This vulnerability allows attackers within the proximity of the Wi-Fi network to potentially guess or brute-force the default pre-shared key, which only varies in the last four digits across devices. Both 2.4 GHz and 5 GHz networks are equally vulnerable, posing serious risks of unauthorized access to sensitive data and network resources.

References

https://research.nccgroup.com/?research=Technical+advisories

x_refsource_MISC

https://research.nccgroup.com/2022/06/10/technical-adviso...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2022
Vulnerability Reserved
May 7, 2022

Trendnet

What is CVE-2022-30325?

References

CVSS V3.1

Timeline