Buffer Overflow Vulnerability in TRENDnet TEW-752DRU Could Lead to Device Crash or Arbitrary Code Execution
CVE-2024-42813

Currently unrated

Key Information:

Vendor: TRENDnet
Status: Tew-752dru Firmware
Vendor: CVE Published:; 19 August 2024

What is CVE-2024-42813?

In TRENDnet TEW-752DRU FW1.03B01, there is a buffer overflow vulnerability due to the lack of length verification for the service field in gena.cgi. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands.

References

https://gist.github.com/XiaoCurry/204680035c1efffa27d1495...

Timeline

Vulnerability published
Aug 19, 2024