CVE-2026-4354

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-824DRU versions 1.010B01 through 1.04B01

Description A security issue exists in the TRENDnet TEW-824DRU web interface. Manipulation of the Language argument within the apply sec.cgi file and the sub 420A78 function can lead to cross-site scripting. This allows for remote attacks. The exploit is publicly available.

Recommendations TRENDnet TEW-824DRU version 1.010B01: At the moment, there is no information about a newer version that contains a fix for this vulnerability. TRENDnet TEW-824DRU version 1.04B01: At the moment, there is no information about a newer version that contains a fix for this vulnerability.