PT-2026-57531 · Trendnet · Tew-821Dap
Iot_Res
·
Published
2026-07-12
·
Updated
2026-07-12
·
CVE-2026-15486
CVSS v3.1
6.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
A vulnerability has been found in TRENDnet TEW-821DAP 1.11B03. This affects the function sub 42026C of the file /goform/tools ddns of the component Firmware Update Handler. Such manipulation of the argument hostname/username/password leads to os command injection. The attack can be launched remotely. The vendor explains: "We are unable to confirm the existence of the vulnerabilities for (...) TEW-821DAP (v1.0R) as these items have been EOL. " This vulnerability only affects products that are no longer supported by the maintainer.
Fix
Command Injection
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tew-821Dap