Command Injection Vulnerability in Trendnet AC2600 TEW-827DRU Version 2.08B01

CVE-2021-20159 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection. The system log functionality of the firmware allows for command injection as root by supplying a malformed parameter.

Learn more about our Web Application Penetration Testing UK.