CVE-2023-51146

Buffer Overflow vulnerability in TRENDnet AC1200 TEW-821DAP with firmware version 3.00b06 allows an attacker to execute arbitrary code via the adm_add_user action.

CVSS v3 8.0 HIGH

8.0^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/SpikeReply/advisories/blob/main/cve/trendnet/cve-2023-51146.md	Exploit Third Party Advisory
https://github.com/SpikeReply/advisories/blob/main/cve/trendnet/cve-2023-51146.md	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:trendnet:tew-821dap_firmware:3.00b06:*:*:*:*:*:*:*

cpe:2.3:h:trendnet:tew-821dap:-:*:*:*:*:*:*:*

History

08 Apr 2025, 19:09

Type	Values Removed	Values Added
CPE		cpe:2.3:o:trendnet:tew-821dap_firmware:3.00b06:::::::* cpe:2.3:h:trendnet:tew-821dap:-:::::::*
References	~~() https://github.com/SpikeReply/advisories/blob/main/cve/trendnet/cve-2023-51146.md -~~	() https://github.com/SpikeReply/advisories/blob/main/cve/trendnet/cve-2023-51146.md - Exploit, Third Party Advisory
First Time		Trendnet Trendnet tew-821dap Trendnet tew-821dap Firmware

Information

Published : 2024-03-26 22:15

Updated : 2025-04-08 19:09

NVD link : CVE-2023-51146

Mitre link : CVE-2023-51146

CVE.ORG link : CVE-2023-51146

JSON object : View

Products Affected

trendnet

tew-821dap
tew-821dap_firmware

CWE

CWE-121

Stack-based Buffer Overflow

8.0 /10