|
|||
Rule General Information |
---|
Release Date: | 2020-01-20 | |
Rule Name: | TrendNet Routers AUTHORIZED_GROUP Information Disclosure Vulnerability (CVE-2018-7034) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php. | |
Impact: | An attacker can abtain sensitive information of the target victim, and do malicious actions to gain profits using the information. | |
Affected OS: | Network Device | |
Reference: | https://blogs.securiteam.com/index.php/archives/3627 |
|
Solutions |
---|
The vendors have released upgrade patches to fix vulnerabilities, please visit: https://www.trendnet.com |