Hardcoded Password Vulnerability in TRENDnet TEW-814DAP Router
CVE-2024-37644

Currently unrated

Key Information:

Vendor: TRENDnet
Status: TEW-814DAP Router
Vendor: CVE Published:; 14 June 2024

What is CVE-2024-37644?

The TRENDnet TEW-814DAP router has been identified to have a hardcoded password in its /etc/shadow.sample file, enabling attackers to gain root access easily. This vulnerability compromises the security of the device, allowing unauthorized users to control and manipulate the router's settings and data.

References

https://github.com/s4ndw1ch136/IOT-vuln-reports/blob/main...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 14, 2024
Vulnerability Reserved
Jun 10, 2024