cve/2023/CVE-2023-24096.md

CVE-2023-24096

Description

** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the newpass parameter at /formPasswordSetup. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

POC

Reference

• https://github.com/chunklhit/cve/blob/master/TRENDNet/TEW-820AP/06/README.md

Github

• https://github.com/fkie-cad/nvd-json-data-feeds