First published: Wed Feb 14 2018(Updated: )
TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Trendnet Tew-751dr Firmware | =1.03b03 | |
TRENDnet TEW-751DR | ||
Trendnet Tew-752dru Firmware | =1.03b01 | |
Trendnet Tew-752dru | ||
Trendnet Tew733gr Firmware | =1.03b01 | |
TRENDnet TEW733GR |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-7034 is a vulnerability that affects TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices, allowing authentication bypass via an AUTHORIZED_GROUP=1 value in a request for getcfg.php.
CVE-2018-7034 allows authentication bypass on TRENDnet TEW-751DR v1.03B03 devices by using an AUTHORIZED_GROUP=1 value in a request for getcfg.php.
CVE-2018-7034 allows authentication bypass on TRENDnet TEW-752DRU v1.03B01 devices by using an AUTHORIZED_GROUP=1 value in a request for getcfg.php.
CVE-2018-7034 allows authentication bypass on TRENDnet TEW733GR v1.03B01 devices by using an AUTHORIZED_GROUP=1 value in a request for getcfg.php.
CVE-2018-7034 has a severity rating of 7.5 (High).
To fix CVE-2018-7034, it is recommended to apply the latest firmware updates provided by TRENDnet.