CVE-2024-51189

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-651BR version 2.04B1 TRENDnet TEW-652BRP version 3.04b01 TRENDnet TEW-652BRU version 1.00b12

Description: The issue is related to a Store Cross-site scripting (XSS) vulnerability. This vulnerability can be exploited via the macList Name 1.1.1.0.0 parameter on the "/filters.htm" page.

Recommendations: For TRENDnet TEW-651BR version 2.04B1, consider disabling access to the "/filters.htm" page until a patch is available. For TRENDnet TEW-652BRP version 3.04b01, avoid using the macList Name 1.1.1.0.0 parameter in the affected page until the issue is resolved. For TRENDnet TEW-652BRU version 1.00b12, restrict access to the vulnerable parameter macList Name 1.1.1.0.0 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.