Trendnet AC2600 TEW-827DRU Version 2.08B01 SMB Credentials Disclosure Vulnerability

Trendnet AC2600 TEW-827DRU Version 2.08B01 SMB Credentials Disclosure Vulnerability

CVE-2021-20164 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses credentials for the smb functionality of the device. Usernames and passwords for all smb users are revealed in plaintext on the smbserver.asp page.

Learn more about our Cis Benchmark Audit For Server Software.