TRENDnet TEW-811DRU httpd basic.asp buffer overflow
CVE-2023-0612

7.5HIGH

Key Information:

Vendor: TRENDnet
Status: TEW-811DRU
Vendor: CVE Published:; 1 February 2023

What is CVE-2023-0612?

A buffer overflow vulnerability has been identified in the TRENDnet TEW-811DRU wireless router, specifically within an undisclosed function of the file /wireless/basic.asp. This vulnerability allows remote attackers to manipulate data and causes a buffer overflow, potentially leading to unauthorized access or the execution of arbitrary code. The exploit for this vulnerability is publicly disclosed, making it critical for users to apply security measures and update their firmware to mitigate risks associated with this exposure.

Affected Version(s)

TEW-811DRU 1.0.10.0

References

https://vuldb.com/?id.219936

vdb-entrytechnical-descriptionexploit

https://vuldb.com/?ctiid.219936

signature

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 1, 2023
Vulnerability Reserved
Feb 1, 2023

Credit

leetsun (VulDB User)