Cleartext Transmission of Sensitive Information in Trendnet AC2600 TEW-827DRU v2.08B01

Cleartext Transmission of Sensitive Information in Trendnet AC2600 TEW-827DRU v2.08B01

CVE-2021-20154 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Trendnet AC2600 TEW-827DRU version 2.08B01 contains an security flaw in the web interface. HTTPS is not enabled on the device by default. This results in cleartext transmission of sensitive information such as passwords.

Learn more about our Web App Pen Testing.