Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-42813

In TRENDnet TEW-752DRU FW1.03B01, there is a buffer overflow vulnerability due to the lack of length verification for the service field in gena.cgi. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands.

Published

2024-08-19T20:15:07.147

Last Modified

2025-04-01T18:20:43.097

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	trendnet	tew-752dru_firmware	1.03b01	Yes
Hardware	trendnet	tew-752dru	-	No

References

https://gist.github.com/XiaoCurry/204680035c1efffa27d14956820ad928 Exploit, Third Party Advisory ([email protected])