CVE-2021-20164

Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses credentials for the smb functionality of the device. Usernames and passwords for all smb users are revealed in plaintext on the smbserver.asp page.
References
Link Resource
https://www.tenable.com/security/research/tra-2021-54 Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:trendnet:tew-827dru_firmware:2.08b01:*:*:*:*:*:*:*
cpe:2.3:h:trendnet:tew-827dru:2.0:*:*:*:*:*:*:*

Information

Published : 2021-12-30 14:15

Updated : 2022-01-07 09:40


NVD link : CVE-2021-20164

Mitre link : CVE-2021-20164


JSON object : View

CWE
CWE-522

Insufficiently Protected Credentials

Advertisement

dedicated server usa

Products Affected

trendnet

  • tew-827dru_firmware
  • tew-827dru