Command Injection Vulnerability in TRENDnet TV-IP1314PI 5.5.3 200714 Devices

CVE-2023-49237 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings.

Learn more about our Web Application Penetration Testing UK.