← Back

Tew 652bru Firmware

tew-652bru_firmware

Vendor: Trendnet • 6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-51190
1Trendnet
3Tew 651br Firmware
Tew 652brp FirmwareTew 652bru Firmware
Apr 1, 2025
Nov 11, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the ptRule_ApplicationName_1.1.6.0.0 parameter on the /special_ap.htm page.
CVE-2024-51189
1Trendnet
3Tew 651br Firmware
Tew 652brp FirmwareTew 652bru Firmware
Apr 1, 2025
Nov 11, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the macList_Name_1.1.1.0.0 parameter on the /filters.htm page.
CVE-2024-51188
1Trendnet
3Tew 651br Firmware
Tew 652brp FirmwareTew 652bru Firmware
Apr 1, 2025
Nov 11, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the vsRule_VirtualServerName_1.1.10.0.0 parameter on the /virtual_server.htm page...Show more
TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the vsRule_VirtualServerName_1.1.10.0.0 parameter on the /virtual_server.htm page.Show less
CVE-2024-51187
1Trendnet
3Tew 651br Firmware
Tew 652brp FirmwareTew 652bru Firmware
Apr 1, 2025
Nov 11, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the firewallRule_Name_1.1.1.0.0 parameter on the /firewall_setting.htm page.
CVE-2019-11400
1Trendnet
3Tew 651br Firmware
Tew 652brp FirmwareTew 652bru Firmware
Nov 21, 2024
Dec 18, 2019
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered on TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices. A buffer overflow occurs through the get_set.ccp ccp_act parameter.
CVE-2019-11399
1Trendnet
3Tew 651br Firmware
Tew 652brp FirmwareTew 652bru Firmware
Nov 21, 2024
Dec 18, 2019
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
An issue was discovered on TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices. OS command injection occurs through the get_set.ccp lanHostCfg_HostName_1.1.1.0.0 parameter.