Cross-Site Scripting Flaw in TRENDnet Wireless Routers
CVE-2024-51190

Currently unrated

Key Information:

Vendor

TRENDnet

Status
Wireless Routers
Vendor
CVE Published:
11 November 2024

What is CVE-2024-51190?

TRENDnet wireless routers TEW-651BR, TEW-652BRP, and TEW-652BRU have a Store Cross-site Scripting (XSS) vulnerability located in the ptRule_ApplicationName_1.1.6.0.0 parameter on the /special_ap.htm page. This flaw could allow an attacker to inject malicious scripts into the web interface, potentially leading to unauthorized access and manipulation of user data. It is crucial for network administrators to be aware of this vulnerability and take necessary measures to secure their devices.

References

https://www.trendnet.com/products/product-detail?prod=245...
https://www.trendnet.com/products/product-detail?prod=235...
https://www.trendnet.com/products/product-detail?prod=235...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.