CVE-2021-20161
N/A
N/A
Summary
Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient protections for the UART functionality. A malicious actor with physical access to the device is able to connect to the UART port via a serial connection. No username or password is required and the user is given a root shell with full control of the device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Trendnet AC2600 TEW-827DRU | 2.08B01 | affected |
Weaknesses
- Improper Access Control
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.