OS Command Injection Vulnerability in TRENDnet TV-IP410 Network Camera
CVE-2024-46484

9.8CRITICAL

Key Information:

Vendor: TRENDnet
Status: TV-IP410
Vendor: CVE Published:; 29 August 2025

What is CVE-2024-46484?

The TRENDnet TV-IP410 vA1.0R network camera has been found to have an OS command injection vulnerability through its /server/cgi-bin/testserv.cgi component. This flaw allows unauthorized users to execute arbitrary commands on the underlying operating system, potentially compromising the security of the device and the network it is connected to. Proper security measures and updates are necessary to safeguard against this vulnerability.

References

http://trendnet.com

https://gist.github.com/powalll/682c1b81696888fd692e59559...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 29, 2025
Vulnerability Reserved
Sep 11, 2024

JSON