OS Injection Vulnerability in TRENDnet TEW-831DR Routers
CVE-2022-30329

9.8CRITICAL

Key Information:

Vendor: Trendnet
Status: Tew-831dr Firmware
Vendor: CVE Published:; 16 June 2022

What is CVE-2022-30329?

An OS injection vulnerability has been identified in TRENDnet TEW-831DR version 1.0 601.130.1.1356. This vulnerability allows an attacker with valid credentials to execute arbitrary shell commands via the device's web interface. Exploiting this issue can potentially lead to unauthorized access and manipulation of sensitive device settings or data.

References

https://research.nccgroup.com/?research=Technical+advisories

x_refsource_MISC

https://research.nccgroup.com/2022/06/10/technical-adviso...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2022
Vulnerability Reserved
May 7, 2022

Trendnet

What is CVE-2022-30329?

References

CVSS V3.1

Timeline