Unrated severityNVD Advisory· Published Nov 26, 2025· Updated Nov 28, 2025
CVE-2025-65202
CVE-2025-65202
Description
TRENDnet TEW-657BRM 1.00.1 has an authenticated remote OS command injection vulnerability in the setup.cgi binary, exploitable via the HTTP parameters "command", "todo", and "next_file," which allows an attacker to execute arbitrary commands with root privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: = 1.00.1
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.