CVE-2024-50667 Information

Description

The boa httpd of Trendnet TEW-820AP 1.01.B01 has a stack overflow vulnerability in /boafrm/formIPv6Addr /boafrm/formIpv6Setup /boafrm/formDnsv6. The reason is that the check of ipv6 address is not sufficient which allows attackers to construct payloads for attacks.

Reference

https://github.com/ixout/iotVuls/blob/main/Trendnet/TEW_820/report.md https://www.trendnet.com/support/support-detail.asp?prod=100_TEW-820AP