15Mar
CVE-2024-28354 | TRENDnet TEW-827DRU 2.10B01 POST Request apply.cgi usapps.@smb[%d].username command injection
A vulnerability was found in TRENDnet TEW-827DRU 2.10B01. It has been classified as critical. This affects an unknown part of the file apply.cgi of the component POST Request Handler. The manipulation of the argument usapps.@smb[%d].username leads to command injection. This vulnerability is uniquely identified as CVE-2024-28354. The attack needs to be initiated within the local network. There is no exploit available.