Description
TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the firewallRule_Name_1.1.1.0.0 parameter on the /firewall_setting.htm page.
Published: 2024-11-11
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 01 Apr 2025 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Trendnet tew-651br
Trendnet tew-652brp
Trendnet tew-652bru
CPEs cpe:2.3:h:trendnet:tew-651br:-:*:*:*:*:*:*:*
cpe:2.3:h:trendnet:tew-652brp:-:*:*:*:*:*:*:*
cpe:2.3:h:trendnet:tew-652bru:-:*:*:*:*:*:*:*
Vendors & Products Trendnet tew-651br
Trendnet tew-652brp
Trendnet tew-652bru

Tue, 12 Nov 2024 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Trendnet
Trendnet tew-651br Firmware
Trendnet tew-652brp Firmware
Trendnet tew-652bru Firmware
Weaknesses CWE-79
CPEs cpe:2.3:o:trendnet:tew-651br_firmware:2.04b1:*:*:*:*:*:*:*
cpe:2.3:o:trendnet:tew-652brp_firmware:3.04b01:*:*:*:*:*:*:*
cpe:2.3:o:trendnet:tew-652bru_firmware:1.00b12:*:*:*:*:*:*:*
Vendors & Products Trendnet
Trendnet tew-651br Firmware
Trendnet tew-652brp Firmware
Trendnet tew-652bru Firmware
Metrics cvssV3_1

{'score': 4.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 11 Nov 2024 20:00:00 +0000

Type Values Removed Values Added
Description TRENDnet TEW-651BR 2.04B1, TEW-652BRP 3.04b01, and TEW-652BRU 1.00b12 devices contain a Store Cross-site scripting (XSS) vulnerability via the firewallRule_Name_1.1.1.0.0 parameter on the /firewall_setting.htm page.
References

Subscriptions

Trendnet Tew-651br Tew-651br Firmware Tew-652brp Tew-652brp Firmware Tew-652bru Tew-652bru Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-11-12T01:59:15.239Z

Reserved: 2024-10-28T00:00:00.000Z

Link: CVE-2024-51187

cve-icon Vulnrichment

Updated: 2024-11-12T01:53:06.504Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-11T20:15:17.943

Modified: 2025-04-01T18:20:57.320

Link: CVE-2024-51187

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses