TEW-829DRU WIRELESS ROUTER COMMAND INJECTION VULNERABILITY

CVE ID: NA

TRENDnet has received report of a command injection vulnerability when the RADIUS authentication is enabled with TEW-829DRU hardware version v1.xR, firmware 1.0.3.9 and earlier. When exploited successfully, the attacker can have root access to the device. TRENDnet has released firmware update to address the vulnerability, please click on the link below to go to the product's download page. Or, you can login to the device's management (http://tew-829dru), at “New firmware is available!” message on the screen, click on the “Upgrade Firmware” button to go to the firmware upgrade page, and perform the “online firmware upgrade”.

https://www.trendnet.com/support/support-detail.asp?prod=100_TEW-829DRU

REVISION:
7/1/2024 Initial release