GCVE - cpe:2.3:h:trendnet:tew-815dap:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:trendnet:tew-815dap:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Trendnet (`4262376e-0c1d-55de-8dcc-074e5a926aa7`)
Product	Tew 815Dap (`3099355a-6ac4-5b69-9960-322c03338b7e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-22546`	not_vulnerable	2026-06-03 14:55:01.280987	Details available TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An authenticated attacker with administrator privileges can leverage this vulnerability over the network via a malicious POST request. Published: 2024-04-30T00:00:00.000Z Updated: 2024-08-01T22:51:10.763Z Open on db.gcve.eu Reference links https://www.trendnet.com/support/support-detail.asp?prod=105_TEW-815DAP https://warp-desk-89d.notion.site/TEW-815DAP-94a631c20dee4f399268dbcc880f1f4c	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-22546`	vulnerable	2026-06-03 14:55:01.279963	Details available TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An authenticated attacker with administrator privileges can leverage this vulnerability over the network via a malicious POST request. Published: 2024-04-30T00:00:00.000Z Updated: 2024-08-01T22:51:10.763Z Open on db.gcve.eu Reference links https://www.trendnet.com/support/support-detail.asp?prod=105_TEW-815DAP https://warp-desk-89d.notion.site/TEW-815DAP-94a631c20dee4f399268dbcc880f1f4c	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-0919`	not_vulnerable	2026-06-03 14:54:04.502688	TRENDnet TEW-815DAP POST Request do_setNTP command injection HIGH (8.8) A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function do_setNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-252123. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-01-26T08:08:35.968Z Updated: 2024-10-18T15:02:28.574Z Open on db.gcve.eu Reference links https://vuldb.com/?id.252123 https://vuldb.com/?ctiid.252123 https://warp-desk-89d.notion.site/TEW-815DAP-94a631c20dee4f399268dbcc880f1f4c?pvs=4	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-0919`	vulnerable	2026-06-03 14:54:04.501035	TRENDnet TEW-815DAP POST Request do_setNTP command injection HIGH (8.8) A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical. This affects the function do_setNTP of the component POST Request Handler. The manipulation of the argument NtpDstStart/NtpDstEnd leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-252123. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-01-26T08:08:35.968Z Updated: 2024-10-18T15:02:28.574Z Open on db.gcve.eu Reference links https://vuldb.com/?id.252123 https://vuldb.com/?ctiid.252123 https://warp-desk-89d.notion.site/TEW-815DAP-94a631c20dee4f399268dbcc880f1f4c?pvs=4	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.