TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php.
2018-02-14T16:29:00.217
2024-11-21T04:11:32.913
Modified
CVSSv3.0: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | trendnet | tew-751dr_firmware | 1.03b03 | Yes |
| Hardware | trendnet | tew-751dr | - | No |
| Operating System | trendnet | tew-752dru_firmware | 1.03b01 | Yes |
| Hardware | trendnet | tew-752dru | - | No |
| Operating System | trendnet | tew733gr_firmware | 1.03b01 | Yes |
| Hardware | trendnet | tew733gr | - | No |