CVE-2025-15471

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-713RE version 1.02

Description A flaw exists in TRENDnet TEW-713RE that allows for remote operating system command injection. The issue is located in the /goformX/formFSrvX file, specifically through manipulation of the SZCMD parameter. Successful exploitation allows attackers to execute arbitrary commands on the system. The exploit is publicly available. The vendor was notified of the issue but did not provide a response.

Recommendations TRENDnet TEW-713RE version 1.02: At the moment, there is no information about a newer version that contains a fix for this vulnerability.