VYPR

TW100-S4W1CA

by Trendnet

CVEs (2)

  • CVE-2021-32426Jun 17, 2021
    risk 0.00cvss epss 0.01

    In TrendNet TW100-S4W1CA 2.3.32, it is possible to inject arbitrary JavaScript into the router's web interface via the "echo" command.

  • CVE-2021-32424Jun 17, 2021
    risk 0.00cvss epss 0.00

    In TrendNet TW100-S4W1CA 2.3.32, due to a lack of proper session controls, a threat actor could make unauthorized changes to an affected router via a specially crafted web page. If an authenticated user were to interact with a malicious web page it could allow for a complete…