|
|
|||
| Rule General Information |
|---|
| Release Date: | 2020-01-20 | |
| Rule Name: | TrendNet Routers AUTHORIZED_GROUP Information Disclosure Vulnerability (CVE-2018-7034) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php. | |
| Impact: | An attacker can abtain sensitive information of the target victim, and do malicious actions to gain profits using the information. | |
| Affected OS: | Network Device | |
| Reference: | https://blogs.securiteam.com/index.php/archives/3627 |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: https://www.trendnet.com |